Please ensure Javascript is enabled for purposes of website accessibility

Portal launched to report data breaches impacting Pa.

Ed Gruver//September 17, 2024

Attorney General Michelle Henry announced that credit reporting companies and other entities holding personal data will be required by law to report data breaches. PHOTO/PACAST

Portal launched to report data breaches impacting Pa.

Ed Gruver//September 17, 2024//

Listen to this article

The launch of an online portal to streamline the process for companies and other entities reporting data breaches impacting more than 500 residents was announced by . 

Starting Sept. 26, credit reporting companies, or other entities that hold onto , will be required by law to report data breaches to the Office of Attorney General, pursuant to the recent amendments to Pennsylvania’s .

“This new requirement in the law will offer Pennsylvanians more protections and prompt notifications when sensitive information, such as account numbers and personal data, is compromised,” Henry said in a statement. “We have launched this portal to make the process easier and more efficient for businesses who are required to make these notifications.” 

Gov. Josh Shapiro on June 28 approved amendments to the Breach of Personal Information Notification Act when a affects more than 500 Pennsylvanians. In addition, if the breach involves the person’s name and , , or driver’s license or , companies must provide impacted individuals with 12 months of credit monitoring and access to a credit report. 

Entities can access the portal via the Office of the Attorney General’s site, where they will be guided through a process to submit required information about the breach.