MS SB2719

Requires entities conducting business in Mississippi that experience a security breach affecting more than 100 state residents to notify the Office of the Attorney General in writing without unreasonable delay.

Written notice to the Attorney General must include a synopsis of breach events, approximate number of affected individuals, details of free services offered to victims, and contact information for the entity's representative.

Entities must provide supplemental or updated information to the Attorney General if initial breach notices are materially incomplete or inaccurate.

Information marked confidential by the Attorney General under this section is exempt from public disclosure under the Mississippi Public Records Act of 1983.

Failure to comply with breach reporting requirements constitutes an unfair trade practice enforceable by the Attorney General, with no private right of action created for individuals.