What information is required on a notification to Michigan consumers?
Consumers must receive notices without delay, as described in MCL 500.561(4), and in a clear manner containing the following:
(A) A description of the cybersecurity event in general terms.
(B) A description of the type(s) of personal information that is the subject of the unauthorized access or use; be sure not to include the specific personal information accessed in the notice.
(C) A description of what the licensee providing the notice has done to protect data from further security breaches.
(D) A telephone number where a notice recipient may obtain assistance or additional information.
(E) A reminder to the notice recipients of the need to remain vigilant for incidents of fraud and identity theft.