HomeLegal DirectoryGuam Breach Notification (9 GCA Ch. 48)

In effect Limited protection

Guam Notification of Breaches of Personal Information — 9 GCA Ch. 48

Guam · 9 G.C.A. ch. 48

Guam's data breach notification statute. Requires entities holding personal information to notify affected residents of breaches. Relevant to AI systems processing personal data because any compromise must trigger notice.

Technical detail

9 G.C.A. ch. 48 (Notification of Breaches of Personal Information, 2009) requires persons and entities holding personal information of Guam residents to notify affected individuals after a security breach.

Who is protected: Guam residents whose personal data is held by covered entities

Who must comply: Persons and entities holding personal information of Guam residents

Key facts

JurisdictionGuam
LevelState
StatusIn effect
Protection strengthLimited protection
Effective date2009-01-01
Enacted2009-01-01
Citation9 G.C.A. ch. 48
Enforced byOffice of the Attorney General of Guam
Private right of actionNo — agency enforcement only
PenaltiesCivil penalties per chapter
Topicsconsumer data privacy · data retention · consumer protection
Last verified2026-06-16
Official source9 GCA Ch. 48 — Notification of Breaches of Personal Information (Justia) ↗

More AI rules in Guam

Related consumer data privacy rules elsewhere

See something wrong or out of date? Submit a correction — every entry must carry a verifiable official source.