Governor Brown Signs SB 24 Into Law, Clarifying Data Breach Notice Duties

Today Governor Jerry Brown signed into law an amendment to existing California Civil Code provisions governing notification duties in the event that the security of unencrypted personal data of California residents – including financial, health, and health insurance information – is breached or suspected to be breached. I posted a summary of the new law and its requirements on August 19 so click through or scroll down for the details. A press release from the office of sponsoring state Senator Joseph Simitian (D-Palo Alto) can be reviewed here.

This bill had no formal opponents and moved quickly through the legislative approval process, signaling California legislators’ strong interests in data privacy concerns. The original version of the now amended breach notification law, enacted in 2003, has since inspired 45 similar state laws, and likely influenced the federal health data breach notification duties under HIPAA as amended by HITECH. I expect more developments in the data privacy area that affect benefit plan sponsors, their vendors and brokers, and will keep you updated as they occur.

1 Comment

Filed under California Data Privacy, HIPAA and HITECH

One response to “Governor Brown Signs SB 24 Into Law, Clarifying Data Breach Notice Duties

  1. Pingback: Data Breach Protections Get Stronger in California | Joe's HR and Benefits Blog

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s