Michigan Attorney General Dana Nessel spoke in favor of the legislation to require companies to inform the state residents of data breaches. She stated that HBs 4186-4187 should go farther and require the Attorney General’s office to be notified in case of a data breach as well. HBs 4186-4187 were referred to House ways and Means on unanimous votes by the Financial Services committee.
The bills require that a company notify the state of a data breach within 45 days. It also requires companies to protect personal information, and to investigate both potential and actual breaches.