May 7, 2009 / Law Alert

Ohio Legislature Clarifies Requirement To Report Data Breach To Law Enforcement

Ohio requires companies to disclose a breach of security of their computer system to those whose electronic personal information may have been compromised. Ohio recently revised its laws to expressly require a person with knowledge of the unauthorized use of a computer or computer system to report it to a law enforcement agency. With few exceptions, failure to report such incidents to law enforcement is a second degree misdemeanor.