California Security Breach Information Act (SB-1386)

In the United States, the California Security Breach Information Act (SB-1386) is a California state law requiring organizations that maintain personal information about individuals to inform those individuals if the security of their information is compromised. The Act stipulates that if there's a security breach of a database containing personal data, the responsible organization must notify each individual for whom it maintained information. The Act, which went into effect July 1, 2003, was created to help stem the increasing incidence of identity theft. According to the Federal Trade Commission, the organization received 214,905 complaints of identity theft in 2003, up 40% from 2002.

Learn more about compliance at

This was last updated in May 2010

Continue Reading About California Security Breach Information Act (SB-1386)

Dig Deeper on Enterprise business applications