Introduced
by
To prohibit a person or agency with a database containing personal identifying information from keeping information about a person in the database for more than two years unless the individual expressly agrees in writing, or unless keeping the data is required or authorized by state or federal law, except for purposes of an investigation, audit, or internal review.
Referred to the Committee on Judiciary
Reported without amendment
With the recommendation that the substitute (H-1) be adopted and that the bill then pass.
Substitute offered
To replace the previous version of the bill with one that does not mandate a time limit on keeping data, but instead mandates procedures for when personal information is removed from a database.
The substitute passed by voice vote
Passed in the House 107 to 1 (details)
To require a financial institution or agency in the business of making consumer loans to destroy any data removed from a database that included any unencrypted, unredacted personal information concerning a Michigan resident, unless the data was being retained elsewhere for another lawful purpose. The bill also specifies procedures for destroying the data.
Referred to the Committee on Judiciary
