if we start with HIPAA and look at PI personal information regulations (see Florida law) is there a similar responsibility for a company not to send Social security information unsecure? (not encrypted)
i.e forward copies of your W2 to your web email. is the company liability for fines or that the breach will need to be published and reported to state agencies and the people affected notified?
HIPAA is irrelevant to your question. There is no legal obligation for a social security number to be encrypted before a W-2 is sent via e-mail.
Reclassified your question to put into the Social Security section.
The foregoing is not legal advice nor is it in any manner whatsoever meant to create or impute an attorney/client relationship.
Years licensed, work experience, educationLegal community recognition
Peer endorsements, associations, awardsLegal thought leadership
Publications, speaking engagementsDiscipline