| Privacy Rights Clearinghouse

In 2025, the Data Breach Chronology captured 8,019 data breach notification filings from state and federal agencies that publish breach reports. These represented 4,080 unique breach events impacting at least 375 million individuals.

The year's statistics were dominated by Change Healthcare, whose final notification arrived in October, twenty months after the February 2024 ransomware attack, confirming 192.7 million people were affected. It's the largest healthcare data breach ever recorded, more than double the Anthem breach that held that record for a decade.

Read more about 2025 Data Breach Report

Data Breach Notification Laws: A 50-State Survey (2026 Edition)

This survey analyzes and compares data breach notification laws across all 50 U.S. states and the District of Columbia. Using a standardized framework of 50 questions, we examined each jurisdiction's requirements for breach notification timing, covered data types, notification recipients, enforcement mechanisms, and consumer remedies.

This survey reflects statutes enacted as of January 1, 2026.

Explore the Data

Read more about Data Breach Notification Laws: A 50-State Survey (2026 Edition)

Stronger Privacy for Californians: Four Bills Signed into Law

Governor Newsom has signed SB 361, AB 566, AB 656, and SB 446 into law, advancing browser controls, data broker transparency, social media account deletion, and breach notification—continuing California's role as a national leader in consumer data privacy.

AB 566: Requiring Browsers to Make it Easier for Californians to Exercise Privacy Rights

Read more about Stronger Privacy for Californians: Four Bills Signed into Law

Data Breach Chronology Live Report

Read more about Data Breach Chronology Live Report

Why Are Hundreds of Data Brokers not Registering with States?

Written in collaboration with the Electronic Frontier Foundation

A unified database of 750+ data brokers across five state registries—and the compliance gaps we found

Read more about Why Are Hundreds of Data Brokers not Registering with States?

Coalition Defends CFPB's Consumer Complaint System

We are joining 40+ consumer, civil rights, housing, and privacy organizations in urging the Consumer Financial Protection Bureau to maintain and continue its Consumer Complaint Intake System in the face of pressures to eliminate this vital consumer protection tool.

Read more about Coalition Defends CFPB's Consumer Complaint System

Tableau Test Landing Page

Read more about Tableau Test Landing Page

Q1 2025 Data Breach Report: 658 Data Breaches Reported and Major Database Improvements

Our May 2025 update—the fifth this year—brings our complete data through May along with this focused analysis of Q1 breach statistics. The first quarter saw 876 new breach notifications representing 658 distinct security incidents that impacted over 32 million people. This release also includes major database enhancements with completely refactored grouping algorithms and improved categorization models, making our breach tracking and analysis more accurate than ever.

Read more about Q1 2025 Data Breach Report: 658 Data Breaches Reported and Major Database Improvements

Privacy Rights Clearinghouse and Consumer Reports Support Senate Bill 361 to improve data broker reporting

We're proud to stand with Consumer Reports in supporting Senator Becker's SB 361 to improve the registration and transparency requirements of the California Delete Act.

Read more about Privacy Rights Clearinghouse and Consumer Reports Support Senate Bill 361 to improve data broker reporting

Subscribe to

Contact