Michigan Attorney General Dana Nessel is taking aim at news this week of another major data breach involving a Michigan healthcare provider, Corewell Health.
With news of a second incident this year in which the personal information of more than one million Corewell Health patients had been compromised, Nessel says immediate legislative action is needed.
“We’re very concerned about the number of breaches that have taken place, and we’re very concerned about the lack of teeth and really any legal authority that the Department of Attorney General has here in Michigan in order to hold companies accountable when they’re not properly securing our data and they’re not informing patients or our department that a breach has even occurred so that we can assist people,” Nessel said.
This latest Corewell data breach only affects customers in southeast Michigan, not southwest Michigan. A company Corewell does business with in the southeast corner of the state was hacked.
Nessel says 34 states currently have legislation on the books making it mandatory for companies to report such data breaches to the Department of Attorney General. She wants Michigan to become the 35th.
