The Effect of State Data Breach Notification Laws on Medical Identity Theft

25 Pages Posted: 14 Nov 2020

See all articles by Aniket Kesari

Aniket Kesari

University of California, Berkeley - D-Lab (Data-Intensive Social Science Lab); Yale Law School

Date Written: May 21, 2020

Abstract

As the number of data breaches in the United States grows each year, cyber-security has become an increasingly important policy area. The primary mechanism for regulating and deterring data breaches is the "data breach notification law." Every U.S. state now has such a law that mandates that certain organizations disclose data breaches to their data subjects. Despite the popularity of these laws, there is relatively little evidence about their effectiveness at deterring breaches, and therefore reducing identity theft. Using medical identity theft panel data collected from the Consumer Financial Protection Bureau (CFPB), this study implements an augmented synthetic control approach to analyze the effect of certain data breach notification standards on medical identity theft.

Suggested Citation

Kesari, Aniket, The Effect of State Data Breach Notification Laws on Medical Identity Theft (May 21, 2020). Available at SSRN: https://ssrn.com/abstract=3700248 or http://dx.doi.org/10.2139/ssrn.3700248

Aniket Kesari (Contact Author)

University of California, Berkeley - D-Lab (Data-Intensive Social Science Lab) ( email )

350 Barrows Hall
Berkeley, CA 94704
United States

HOME PAGE: http://https://akesari12.github.io/

Yale Law School ( email )

127 Wall Street
New Haven, CT 06510
United States

Do you have a job opening that you would like to promote on SSRN?

Paper statistics

Downloads
43
Abstract Views
300
PlumX Metrics