California is not the only US state that legislated its own laws against information breach.
You might not be aware but other US states also made their moves to pass their own data privacy rules to protect their constituents. Data breach is a serious matter and with the introduction of Europe’s General Data Protection Regulation, many see that it as a must to protect personal information.
These US states mirrored some of the GDPR rules in order to give consumers with better clarity and governance of their confidential data. Data privacy laws passed by California and Vermont went further breach notification and necessitate companies to establish critical transformations in their data turnaround procedures.
Since March 2018, the 50 US states including Puerto Rico, Guam, US Virgin Islands, and the District of Columbia had executed breach notification measures that mandate businesses to inform consumers that their personal data is sold out. The new and revised state data discord laws broaden the sense of personal data and particularly require that specific information security provisions are enforced. Below are some US states that passed their own data protection laws:
Alabama passed its primary data breach notification law (SB 318) and took effect on June 1. It covered the unwarranted obtainment of delicate and privately identifying information through online. This also pertains to health information, username, email address including its password, security questions, and answers. The law will likewise penalize of up to half a million dollars for every breach of any company that infringes or didn’t adhere to the provisions of the law’s warning.
Arizona refurbished its breach notification law (HB 2145) to bolster the classification of personal information and squeeze advisory programs. Governor Douglas Anthony Ducey signed the bill on April 11 that revised the data breach notification law. Just like Alabama, Arizona also imposes a $500,000 civil penalty for awareness and intentional breach of the law.
Colorado reinforced its consumer protections (HB 1128) by mandating strict information security rules. It was legislated on May 29 and will take effect on September 1 against breach of information.
Iowa has passed its HF 2354 to control online services as well as mobile apps for students. It took effect on July 1 and employs to operators of online services, online applications, internet sites, or mobile applications. It forbids the utilization of students’ data for specific purposes including the creation of student profile, selling or renting of student information.
Louisiana modified its data breach law (Act. No. 382) and will be implemented on August 1. It also compels organizations to make acceptable measures to eliminate documents with personal data that businesses wish not to keep.
Nebraska’s data breach law (LB 757) will take effect on July 18 to restore justifiable security operations and practices and convey those responsibilities to third parties. Starting July 18, companies that operate businesses in the state and license, own or keep computerized information including Nebraska residents’ personal data should enforce and control legitimate security routines and procedures.
Oregon also amended its breach notification rules (SB 1551) and already took effect on June 2. It was amended to stretch the bounds of those who need to give cognizance of a security breach to anybody who obtained personal data among other things.
South Carolina’s Insurance Data Security Act (H4655) will take effect on January 1 of next year. It demands insurance industries to enforce extensive written cybersecurity agendas and event feedback plan.
South Dakota accomplished its initial data breach notification law (SB 62) and became effective since July 1. It confines the meaning of a breach to the wrongful obtainment of decoded computerized data. It also envelops a far-reaching classification of what is contemplated as personal data and protected information.
Vermont legislated its data privacy law (H. 764) in May and will take effect on January 1 next year. The measure will police data brokers and requires them to register with a $100 fee to the Attorney General, disclose annual data privacy practices and
data breaches, and build-up, enforce, and keep a complete security program consisting of technical, physical, and administrative protection.
Virginia ended its breach notification law (HB 183) to embody income tax information. It became effective since July 1 and now obligates people that arrange tax returns on behalf of other people to inform the Virginia Department of Taxation during the detection or report of unauthorized access to an individual’s return details.
These legislations have been enacted in a sectoral decorum meaning that each measure was developed based on the needs of a certain business or part of the population. Data privacy which is also known as information privacy is an information technology aspect that sorts out the ability of an organization or individual needs to distinguish what information that are stored in a computer can be distributed to the third-parties.
Decenternet is one platform that users need not to worry about their information being sold to different organizations. The personal information on on the Decenternet platform are kept secured and confidential. Consumers are assured that breach of data is highly impossible to exist.