On January 15, 2019, North Carolina Attorney General Josh Stein and Representative Jason Saine reintroduced data privacy legislation that would require organizations to notify the state of a data breach within 30 days, rather than 60 days as required by HIPAA.
The data privacy legislation was reintroduced in an attempt to curb data breaches throughout North Carolina, which reportedly increased by 3.4% from 2017 to 2018.
Read more at Health IT Security
View the N.C. Identity Theft Protection Act Fact Sheet