Financial institutions have 30 days to disclose breaches under new rules
arstechnica.com
Amendments contain loopholes that may blunt their effectiveness.