Enhance your TRUST relationship with PRIVACY and SECURITY. Privacy Made Simple!

   +1 866 267 0049   830 NE Pop Tilton Place, Jensen Beach, FL 34957

Georgia
Privacy Laws

Overview

BREACH NOTIFICATION – Mandated Timeframe
Without unreasonable delay

FINES & PENALTIES – Violations
Not applicable

Legal

Regulation Levels

  • Breach Reporting

    Breach Reporting

  • Consumer Notification

    Consumer Notification

  • Vendor Management

    Vendor Management

  • Vendor Contract Required

    Vendor Contract Required

PRIVACY AND SECURITY LAWS

Laws related to personal information and privacy and security.

QUICK FACTS

Georgia Privacy Law Information

BREACH REPORTING

Breach reporting to all consumer reporting agencies that compile and maintain files on consumers on a nationwide basis is required when consumer notification was made to more than 10,000 residents of this state at one time, without unreasonable delay. If a breach affects residents of other jurisdictions, those individuals must be notified based on the breach notification laws of the jurisdiction where they reside.

CONSUMER NOTIFICATION REQUIREMENTS

Individuals must be notified based on the breach notification laws of the jurisdiction where they reside.

VENDOR NOTIFICATION

Vendors must notify Organizations within 24 hours after the discovery of a breach or suspected breach. The Organization will be responsible to complete any required regulatory reporting and consumer notification. Organizations and Vendors in the business of destroying records must have measures in place for the secure destruction of records containing personal information so the records are unreadable or undecipherable.

INDUSTRY SPECIFIC LAWS

There are separate laws covering data for education and health.

FINES & PENALTIES

Organizations may be fined or penalized for Vendor violations. Businesses in violation of data protection laws may incur fines up to $250 for the first violation and up to $1,000 for a second or subsequent violation. Businesses in violation of data disposal law may incur fines up to $500 for each customer’s record that contains personal information that is wrongfully disposed of or discarded; with a total fine up to $10,000.

Georgia Statutes and Laws

O.C.G.A. § 10-1-393.8

Protection from disclosure of an individual’s social security number

O.C.G.A. §§ 10-1-910 – 10-1-912

Notification required upon breach of security regarding personal information

O.C.G.A. §§ 10-15-1 – 10-15-7

Disposal of business records containing personal information; handling of receipts …

O.C.G.A. §§ 20-2-660 – 20-2-668

Student data privacy, accessibility, and transparency act

O.C.G.A. §§ 31-33-1 – 31-33-8

Health records

O.C.G.A. § 33-24-57.1

Health insurance identification card; issue required; contents; updating; social security …

O.C.G.A. § 46-5-214

Action in event of telephone record security breach; notification to …

DISCLAIMER

The information provided is not legal guidance or recommendations and are for informational purposes only.