Montana and Wyoming Amend Their Data Breach Statutes

Montana and Wyoming recently amended their data breach statutes to expand the definition of personally identifiable information or PII (partly to address tax fraud issues, which we recently blogged about here), to require notice to state regulators (Montana), and to increase the quality and quantity of information that an entity reporting a breach must disclose to the affected individuals (Wyoming).