Introduced
by
To limit the data-breach liability of individuals, institutions and organizations that maintain or access personal information about others if they “established, maintained, and reasonably complied with a written cybersecurity program that contains administrative, technical, and physical safeguards” as described in the bill. The bill would establish as the “strong policy of this state” to “incentivize conformance to a recognized cybersecurity standard or framework”.
Referred to the Committee on Energy and Technology
Reported without amendment
With the recommendation that the substitute (S-1) be adopted and that the bill then pass.
Passed in the Senate 20 to 17 (details)
Referred to the Committee on Financial Services
