Michigan employers will have a new set of responsibilities when the state’s new security-breach notification law takes effect on July 2.
Under the law, which amends Michigan’s Identity Theft Protection Act, owners and licensers of databases are required to notify Michigan residents whose personal information has been accessed by an unauthorized person. Failure to provide timely notice will subject employers to both fines and civil lawsuits.
To comply, it’s important to understand what “database,” “personal information” and “breach” mean.
While the law does not specifically define “database,” the generally accepted definition is a collection of data arranged for ease and speed of retrieval, usually by a computer. For example, employee records and computerized personnel, medical and worker’s compensation files are all considered databases.
The law defines “personal...(register to read more)
- How to Fire an Employee the Legal Way: 6 Termination Guidelines
- Is it legal for us to restrict when employees may take small amounts of vacation time?
- Don't expect to get away with paying undocumented workers less than law requires
- Legal compliance starts at the very beginning—with hiring
- Pension plans: Don't make <br/> employees guess at meanings