New Hampshire Notice of Security Breach

New Hampshire HB 1660 of 2007 requires businesses who own or license computerized data that includes personal information shall, when they become aware of a security breach, promptly determine the likelihood that the information has been or will be misused. If the determination is that misuse of the information has occurred or is reasonably likely to occur, or if a determination cannot be made, businesses shall notify the affected individuals as soon as possible. Personal information is considered the customer’s full name in combination with any of the following: social security number, driver’s license number, or financial account information. The policy detects a combination of full names with social security, driver’s license, or credit card numbers. Additional rules detect passwords and account numbers. The rules for this policy are:

• New Hampshire Notice of Security Breach: Name and SSN
• New Hampshire Notice of Security Breach: Name and DL
• New Hampshire Notice of Security Breach: Name and CCN
• New Hampshire Notice of Security Breach: Name and Password (Wide)
• New Hampshire Notice of Security Breach: Name and Password (Default)
• New Hampshire Notice of Security Breach: Name and Password (Narrow)
• New Hampshire Notice of Security Breach: Password Dissemination for HTTP Traffic (Wide)
• New Hampshire Notice of Security Breach: Password Dissemination for HTTP Traffic (Default)
• New Hampshire Notice of Security Breach: Password Dissemination for HTTP Traffic (Narrow)
• New Hampshire Notice of Security Breach: Account and Password