We are tracking 50+ active data breach cases reported to the Maryland Attorney General. If your information was exposed, you may qualify for compensation — at no cost to you.
Maryland Personal Information Protection Act (PIPA) — Md. Code, Com. Law § 14-3501 et seq.
Maryland's PIPA requires notification within 45 days and is one of the few state laws that explicitly requires companies to implement and maintain 'reasonable security measures' — giving consumers a direct basis to sue for inadequate security practices.
Maryland residents can sue not just for failure to notify, but for a company's failure to implement reasonable security measures. This gives you a claim even if you were eventually notified.
Showing 50 most recent cases · Maryland has additional cases on file
Were you affected by a Maryland data breach? Find out if you qualify for compensation — no cost, no obligation.
Check My Eligibility →