Text Size:   A+ A- A   •   Text Only


The Oregon Identity Theft Protection Act

Identity theft is the act of stealing someone’s identification and using it without permission. This theft can be both inconvenient and costly – to both consumers, and the businesses that maintain personal information.

Under law, businesses must safeguard the personal information they keep, and notify consumers if the information has been lost or stolen.

Personal information, under Oregon law, is defined as a consumer's first name or first initial and last name in combination with any one or more of the following:

  • Social Security number
  • Driver's license number or state identification card issued by the Department of Transportation
  • A passport number or other identification number issued by the United States
  • A financial account, credit card, or debit card number along with any required security or access code or password that allows someone to use that account
  • Data of the consumer's physical characteristics, such as an image of a fingerprint, retina, or iris, used to authenticate their identification for a financial transaction
  • Health insurance policy number or subscriber identification number in combination with any other unique identifier that a halth insurer uses to identify the consumer
  • Any information about a consumer's medical history or mental or physical condition, or the consumer's medical diagnosis or treatment by a medical professional.

Oregon consumers can protect themselves and their minor children with a security freeze. A freeze blocks anyone from using your personal information to get credit or open new accounts.

Tools for Consumers
Tools for Businesses