CUNA News
  • LOG IN
  • Create Account
  • Sign Out
  • My Account
  • LOG IN
  • Create Account
  • Sign Out
  • My Account
  • Topics
    • Community Service
    • Compliance
    • Credit Union Hero
    • Credit Union Rock Star
    • Credit Union System
    • Directors
    • Human Resources
    • Leadership
    • Lending
    • Marketing
    • Operations
    • Policy & Issues
    • Sales & Service
    • Technology
  • Credit Union Magazine
    • Buyers' Guide
    • COVID-19
    • Digital Edition
    • Credit Union Hero
    • Credit Union Rock Star
    • Subscribe
    • Advertise
    • Contact
  • Advertise
  • Awards
    • Nominate Credit Union Hero
    • Nominate Credit Union Rock Star
  • Podcasts
  • Videos
  • Contact

News

Home » MD|DC Credit Union Association-led data breach standard update enacted into law
CU System

MD|DC Credit Union Association-led data breach standard update enacted into law

June 2, 2022
Cybersecurity Safeguards

A multi-year effort by the MD|DC Credit Union Association to strengthen data breach notification standards for businesses is now law. SB643 will take effect Oct. 1, updating the Maryland Personal Information Protection Act to incorporate language suggested by the Association. 

“This is a big win for consumers,” said John Bratsakis, MD|DC Credit Union Association President/CEO. “We want to thank the Maryland General Assembly for taking action to strengthen notification standards, something we have strongly advocated for over the past four years. As credit unions, our chief responsibility is to protect consumers’ finances and personal information. This bill helps supports those efforts.”

Specifically, it will give businesses 45 days, from the time they discover or are notified of a breach, to inform consumers that their information was compromised. Law enforcement may delay the reporting requirement if they determine that it may impede a criminal investigation to notify consumers of the breach.

However, once law enforcement determines that it is safe to notify consumers, if it is past the initial 45-day period, business will have 7 days to notify consumers. The current standard is ambiguous, requiring notification within 45 days of completion of an internal investigation, allowing businesses to take months or even years to notify consumers of a breach. Financial institutions in compliance with the Gramm-Leach-Bliley Act are deemed compliant with the Act.

Credit Union Magazine: Summer 2022

Summer 2022

Credit Union Magazine’s Spring 2022 edition highlights inclusive lending, succession planning, fair lending and artificial intelligence, and the use of environmental, social, and governance (ESG) as a competitive differentiator.
Digital Edition •  Subscribe

Trending

  • CFPB issues advisory opinion on debt collection fees

  • MWCUA, NWCUA complete merger, new name coming next week

  • Voice service providers back CUNA position on call blocking codes

Tweets by CUNA_News

Polls

Do you think credit unions should offer cryptocurrency services?

View Results
More

Champion for the Credit Union Movement

Credit Union National Association is the most influential financial services trade association and the only national association that advocates on behalf of all of America's credit unions. We work tirelessly to protect your best interests in Washington and all 50 states. We fuel your professional growth at every level and champion the credit union story at every turn.

More CUNA

  • Membership
  • Contact Us
  • Careers

Resources for

  • Credit Union Advocates
  • Leagues
  • Press
  • Providers

Our Affiliates

  • American Association of Credit Union Leagues (AACUL)
  • Credit Union Awareness
  • Credit Union House
  • CUNA Strategic Services
  • National Credit Union Foundation
GET CUNA UPDATES
© 2022 Credit Union National Association | ADA Compliance Notice & Legal
Email Us