Rutledge issues data breach advisories to Arkansas medical providers

Local News

Arkansas Attorney General Leslie Rutledge with a bipartisan group of state attorneys general speaks to reporters in front of the U.S. Supreme Court in Washington, Monday, Sept. 9, 2019. A bipartisan coalition of 48 states along with Puerto Rico and the District of Columbia said Monday it is investigating whether Google’s search and advertising business is engaged in monopolistic behavior. It follows a Friday announcement of a similar multistate probe targeting Facebook. (AP Photo/Manuel Balce Ceneta)

LITTLE ROCK, Ark. – Arkansas Attorney General Leslie Rutledge today sent an advisory letter to medical licensees throughout Arkansas about their duty to report a data breach under the Personal Information Protection Act (PIPA). The PIPA reporting guidelines, amended in July 2019, mandate that individuals, agencies and businesses notify the Attorney General’s Office at the same time as affected individuals or within 45 days if they experience a data breach that impacts more than 1,000 people.

“Medical providers and other entities carry some of the most sensitive material on our personal lives, and cyber criminals are ruthless in gathering this information to sell or use for bad purposes on the dark web,” said Attorney General Rutledge. “It’s important to work with providers, hospitals and offices on these new laws to protect Arkansans’ information and good businesses in the State.”

Rutledge’s advisory highlights provisions of (PIPA) identifying the types of personal information that triggers the notice requirement if a breach occurs:

  • Social security number
  • Driver’s license number or Arkansas identification card number
  • Account number, credit card number or debit card number in combination with any required security code, access code or password that would permit access to any individual’s financial account
  • Medical information

An online form has been made available for individuals, businesses or State agencies to use to report a data breach to the Attorney General’s Office. The form can be accessed at

If you are a consumer who has been impacted by a data breach, Rutledge encourages you to contact the Attorney General’s Consumer Protection Hotline at (800) 482-8982.

Copyright 2021 Nexstar Media Inc. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.

Trending Stories

Don't Miss