Skip to main content

What information is required on a notification to Michigan consumers?

Consumers must receive notices without delay, as described in MCL 500.561(4), and in a clear manner containing the following:

(A) A description of the cybersecurity event in general terms.

(B) A description of the type(s) of personal information that is the subject of the unauthorized access or use; be sure not to include the specific personal information accessed in the notice.

(C) A description of what the licensee providing the notice has done to protect data from further security breaches.

(D) A telephone number where a notice recipient may obtain assistance or additional information.

(E) A reminder to the notice recipients of the need to remain vigilant for incidents of fraud and identity theft.