Oregon data breach notifications

Notification required to the Oregon Department of Justice within 45 days of discovery when a breach affects more than 250 Oregon consumers.

How DisclosureLens indexes Oregon filings

Oregon is in the Tier-2 ingestion queue. Historical filings will backfill when ingestion goes live. The main DisclosureLens feed already covers SEC, HHS OCR, 17 US state AGs, and ransomware leak sites; subscribe via the main feed to be alerted when Oregon comes online.

Extraction provenance

Extracted records carry per-field source citations into the Oregon AG notice they came from, plus a per-record confidence score and a full extraction audit trail. Oregon filings inherit the same BreachDisclosure v1 schema as SEC 8-Ks, HHS OCR notices, and EU DPA registers — same fields, same provenance metadata, deduped against same-incident filings in other jurisdictions. Full pipeline details: Sources & Methodology.

Statute

ORS 646A.604

Authoritative source

https://justice.oregon.gov/consumer/DataBreach/

Corrections

Email corrections@disclosurelens.com — 48-hour SLA from receipt.