Posts Tagged ‘Nevada’

Nevada’s New Encryption Law; Made Moot By Its Own Data Breach Law?

Thursday, July 2nd, 2009

On May 30, 2009, Nevada enacted a new law, SB 227, which will basically replace NRS 597.970 in January 2010.
In many ways the new law is an improvement over the much more vague, and brief, NRS 597.970. I want to focus here on an improvement, but something that still leaves much to interpretation; that is, what is meant by “encryption”?

(more…)

Tags:, , , , , , , , , , , ,
Posted in Laws & Regulations, Privacy and Compliance | No Comments »

PII Encryption Required by New Massachusetts and Nevada Laws

Monday, September 29th, 2008

There is a growing trend in laws that require personally identifiable information (PII) to be encrypted.
Encryption in past laws have been directed to be considered based upon risk, but now they are more explicitly required in some laws.

(more…)

Tags:, , , , , , , , , , , ,
Posted in Information Security, Laws & Regulations, Privacy and Compliance | No Comments »

New Nevada Law Explicitly Requires Organizations to Encrypt PII Sent Through Networks

Tuesday, October 9th, 2007

To date there have been several laws that direct organizations in certain industries to consider using encryption as one way to protect data based upon the organization’s considered risks, and laws that make encryption a factor in decisions regarding breach notifications, but until now no laws that I’m aware of explicitly required personally identifiable information (PII) to be encrypted. The state of Nevada has now changed that!

(more…)

Tags:, , , , , , , , , , , ,
Posted in Information Security, Laws & Regulations, Privacy and Compliance | 3 Comments »