Oregon
Regulation overview
Mandated Timeframe for Breach Reporting and/or Consumer Notification
Within 45 daysViolations of breach and notification laws:
- $1,000 per violation, up to $500,000
ORS §§ 646A.600 – 646A.628 Oregon Consumer Identity Theft Protection Act
ORS § 646A.622 Requirement to develop safeguards for personal information
ORS § 646A.624 Powers of director, penalties