Cybersecurity Legislation 2016

12/8/2016

 

Cyber threats have enormous implications for government security, economic prosperity and public safety. States are addressing cybersecurity through various approaches, such as:

  • Requiring government or public agencies to implement security practices

  • Offering incentives to the cybersecurity industry

  • Providing exemptions from public records laws for security information

  • Creating cybersecurity commissions, studies or task forces

  • Promoting cybersecurity training and education. 

See also NCSL's security breach information for related legislation about notification requirements for businesses and government. 

NOTE:  Please check individual legislative websites for the most current status, summaries and versions of bill text.

Security

2016 Cybersecurity Legislation

Summary: Legislation was introduced/considered in at least 28 states in 2016. Fifteen of those states enacted legislation, many  addressing issues related to 1) security practices and protection of information in government agencies, 2) exemptions from state Freedom of Information or public records acts for information that could jeopardize security of critical information or infrastructure, and 3) cyber/computer crimes.

Alabama

S.B. 238
Status: Failed-Adjourned.
Relates to consumer protection; requires specified entities to take generally acceptable industry practices and measures to protect and secure data containing sensitive personally identifying information in paper or electronic form; requires the entities to notify the attorney general of data security breaches; requires notice to individuals and credit reporting agencies of data security breaches in certain circumstances; provides for the disposal of customer records.

H.B. 37 (First special session)
Status: Failed
Relates to consumer protection; requires specified entities to take generally acceptable industry practices and measures to protect and secure data containing sensitive personally identifying information in paper or electronic form; requires the entities to notify the Attorney General of data security breaches; requires notice to individuals and credit reporting agencies of data security breaches in certain circumstances; provides for the disposal of customer records.

Arizona

H.B. 2046
Status: Failed-Adjourned.
Relates to statewide technology policy; relates to acceptable use; sets forth requirements related to security practices by state budget units.

California

A.B. 739
Status: Failed.
Provides there shall be no civil or criminal liability for, and no cause of action shall lie or be maintained against any private entity for sharing or receiving cyber security-threat information if such action is conducted in a specified manner. Provides when such immunity is valid. Prohibits using the information for an unfair business advantage. Requires compliance with all restrictions placed on the communication, and to insure anonymization and minimization of the information.

A.B. 1841
Status: Signed by Governor. Chap. 508
Requires the Office of Emergency Services to develop and transmit to the Legislature a state-wide emergency services response plan for cybersecurity attacks on critical infrastructure systems. Requires the office to develop a comprehensive cybersecurity strategy setting standards for state agencies and private entities to prepare for cybersecurity attacks on critical infrastructure systems.

A.B. 1881
Status: Failed.
Makes nonsubstantive changes to an existing law which creates the Department of Technology, the Office of Information Security, under the direction of a chief, to ensure the confidentiality, integrity, and availability of state systems and applications.

A.B. 1955
Status: Failed.
Requires a state agency procuring information technology goods or services to give a preference to vendors that carry cybersecurity insurance.

A.B. 2595
Status: Failed.
Establishes the State Cybersecurity Integration Center to develop cybersecurity strategy for the State. Authorizes federal homeland security grant funding. Requires prioritization of such grant funding for prevention measures. Specifies the authority of the Director of Emergency Services to administer the grant program to respond to statewide emergencies requiring immediate attention.

A.B. 2623
Status: Signed by Governor. Chap. 389
Requires each state agency and certain designated state entities to report to the Department of Technology a summary of their actual and projected information security costs.

A.B. 2720
Status: Failed.
Authorizes the establishment of a Cybersecurity Vulnerability Reporting Reward Program for the purpose of soliciting eligible individuals to identify and report previously unknown vulnerabilities in state computer networks and making a monetary award for an eligible report.

S.B. 1137
Status: Signed by Governor. Chap. 725
Provides that ransomware is a computer contaminant that restricts access to the infected computer and demands that the user pay a ransom to remove the restriction. Makes it a crime for a person to knowingly introduce ransomware into any computer, computer system, or computer network.

Colorado

H.B. 1208
Status: Failed-Adjourned.
Concerns the creation of a subcommittee to address information security, and, in connection therewith, charging the subcommittee to consider strategies for protecting data and other information resources of the state against unauthorized access, disclosure, use, modification, or destruction.

H.B. 1453
Status: Signed by Governor. Chap. 189
Concerns measures to enhance cyber security; creates the Colorado cybersecurity council to operate as a steering group to develop cyber security policy guidance for the governor, develop comprehensive goals, requirements, initiatives, and milestones, and to coordinate with the general assembly and the judicial branch regarding cyber security; allows the establishment of interstate compacts; allows the university of Colorado at Colorado Springs to establish cyber higher education programs.

Delaware

S.B. 258
Status: Signed by Governor. Chap. 296
Amends the State Freedom of Information Act; provides a list of certain records that shall not be deemed public to include information technical infrastructure and related details which if disclosed could jeopardize the security and integrity of an information and technology system owned, operated, or maintained by the State or any public body.

S.B. 283
Status: Failed-adjourned.
Certain protocols are already in place after instances of security breaches of State data are discovered. This Act is meant to help prevent those breaches from occurring by discovering and patching software vulnerabilities before data is compromised

Florida

H.B. 1025
Status: March 24, 2016; Signed by Governor. Chap. 95
Relates to public records; defines the term utility; provides an exemption from the public records requirements for information related to the security of information technology systems or industrial control technology systems of a utility owned or operated by a unit of local government.

H.B. 1033
Status: March 25, 2016; Signed by Governor. Chap. 138
Relates to information technology security; provides Technology Advisory Council requirements; relates to the council's membership; authorizes Agency for State Technology to impose service charges upon state agencies for information technology projects; reassigns certain agency duties to chief information security officer; provides for computer security incident response teams; provides for training programs; requires risk assessments; requires notification of data security incidents or breaches.

S.B. 624
Status: March 25, 2016; Signed by Governor. Chap. 114
Relates to public records; creates exemptions for certain records which identify detection, investigation, or response practices for suspected or confirmed information technology security incidents and for certain portions of risk assessments, evaluations, external audits, and other reports of a State agency's information and technology program; authorizes disclosure of confidential and exempt information to certain agencies and officers.

S.B. 776
Status: Failed.
Relates to public records; defines the term utility; provides an exemption from public records requirements for information related to the security of information technology systems or industrial control technology of a utility owned or operated by a unit of local government.

S.B. 7050
Status: Failed.
Relates to information technology security; revises the membership of the Technology Advisory Council to include a cybersecurity expert; requires the council, in coordination with the Center for Cybersecurity, to identify and recommend science, technology, engineering and mathematics (STEM) training opportunities; provides for the establishment of computer security incident response teams within state agencies.
 

Georgia

H.R. 473
Status: Failed-Adjourned.
Creates the Joint Study Committee on Cyber Security.

H.R. 724
Status: Failed-Adjourned.
Creates the House Study Committee on Cyber Security and Privacy.

H.R. 788
Status: Failed-Adjourned.
Creates the House Study Committee on Cyber Security.

S.B. 276
Status: Failed. Adjourned.
Relates to identity theft; enacts the Georgia Personal Data Security Act; provides for related matters; repeals conflicting laws.

S.R. 360
Status: March 22, 2016. Adopted
Creates the Senate Data Security and Privacy Study Committee to undertake a study of the conditions, needs, issues, and problems that may exist with existing security procedures, practices, and systems in place across the state and local government or related thereto and to recommend any action or legislation which the committee deems necessary or appropriate.

S.R. 412
Status: March 22, 2016. Adopted
Creates the Senate Cyber Challenge Study Committee to undertake a study of the conditions, needs, issues, and specified problems and any recommended action or legislature which the committee deems necessary or appropriate.

Hawaii

H.B. 746
Status: Failed-Adjourned.
Exempts the cybersecurity, economic, education, and infrastructure security coordinator from civil service to oversee cybersecurity and cyber resiliency; establishes one secretary position in the department of defense; appropriates moneys.

H.B. 979
Status: Failed.
Relates to cybersecurity workforce development; establishes a cybersecurity employment training initiative within the University of Hawaii community college system; appropriates funds for the operation of the initiative; increases the number of qualified employees.

H.B. 2755
Status: Failed-Adjourned.
Requires the cybersecurity, economic, education, and infrastructure security coordinator to develop and maintain an incident response plan to cyber-attacks for each executive department in the State.

S.B. 628
Status: Failed.
Authorizes the issuance of general obligation bonds for government facilities for the state information technology and cyber security operations, sheriff division, Honolulu fire department, and Honolulu Police Department as part of the central Oahu first responders technology campus and cyber security command center.

S.B. 746
Status: Failed.
Exempts the Hawaii cybersecurity, economic, education, and infrastructure security coordinator from civil service; establishes one secretary position; appropriates moneys.

S.B. 998
Status: Failed.
Requires the information privacy and security council to establish best practices for the use, storage, and security of personal information entrusted to businesses and government agencies and report findings and proposed legislation to the Legislature.

S.B. 1148
Status: Failed.
Establishes a cybersecurity employment training initiative within the University of Hawaii community college system; appropriates funds for the operation of the initiative.

Illinois

H.B. 3987
Status: Pending - carryover.
Amends the Criminal Code of 2012, expands the definition of computer to include equipment of cloud-based networks of remote servers hosted on the Internet to store, manage, and process data, makes the definition of computer apply to multiple provisions under the computer fraud subdivision of the Code.

Indiana

H.R. 2
Status: Jan. 12, 2016; Adopted.
Urges the legislative council to assign to the appropriate study committee the topic of cybersecurity and the feasibility of adding cybersecurity to the commercial code for the purposes of liability insurance.

Kansas

H.B. 2442
Status: Signed by Governor. Chap. 2016-18
Limits which government officials may receive information technology audit written reports, such as those providing an assessment of security practices of information technology systems maintained or administered by any state agency.

Louisiana

H.B. 222
Status: Failed.

Regulates the manufacture, sale, and lease of telephones with respect to smartphone encryption technology.

Maryland

H.B. 1168
Status: Signed by Governor. Chap. 504
Provides that the amount of a credit against the state income tax is 50 percent, not to exceed $500,000, of the investment in a qualified Maryland cybersecurity company located in Allegany County, Dorchester County, Garrett County, or Somerset County or Baltimore City; applies the act to initial tax credit certificates issued after June 30, 2016.

S.B. 412
Status: Failed.
Requires that the statewide information technology master plan developed by the Secretary of Information Technology include a cybersecurity framework; requires that the Secretary consider materials developed by the National Institute of Standards and Technology in developing or modifying the cybersecurity framework.

S.B. 681
Status: Failed-Adjourned.
Provides that the amount of a credit allowed against the state income tax is 50 percent, not to exceed $ 500,000, of the investment in a qualified Maryland cybersecurity company located in Allegany County, Dorchester County, Garrett County, or Somerset County or Baltimore City; applies the Act to initial tax credit certificates issued after June 30, 2016.

Michigan

H.B. 4540
Status: Pending.
Exempts public body records, documents or information, such as cybersecurity plans, assessments and threats, disclosable under the Freedom of Information 

Mississippi

S.B. 2554
Status: Failed.
Provides that a government entity must obtain a search warrant before obtaining location information of an electronic device; provides exceptions and a civil penalty; creates the Student Data Accessibility, Transparency and Accountability Act of 2015; defines terms; requires the state Board of Education to create certain data inventory and to develop certain policies; prohibits the transfer of certain data; provides certain exceptions; requires a data security plan.

New Hampshire

S.B. 406
Status: Signed by Governor, Chap. 2016-263.
Adds the following positions to the unclassified salary schedule: administrator of the site evaluation committee, deputy commissioner of the liquor commission, deputy commissioner of the department of information technology, and executive director of the office of professional licensure and certification; the bill also changes the salary classification of the chairman of the liquor commission, executive assistant to the adult parole board, chief information security officer, and commandant of the state vete.

New Jersey

S.B. 808
Status: Pending.
Creates NJ Cybersecurity Commission; appropriates $50,000.

A.B. 2265
Status: Pending.
Creates New Jersey Cybersecurity Commission; appropriates funds.

A.B. 2873
Status: Pending.
Requires completion of a computer science class as part of the high school graduation requirements; provides that each public school enrolling students in grades nine through 12 stall offer a course in computer science, including instruction in computational thinking, computer programming, appropriate use of the Internet, development of Internet web pages, data security and the prevention of data breaches, ethical matters in computer science and the global impact of advancements in computer science. 

A.J.R. 118
Status: Pending
Urges Secretary of State to assure the legislature and public that the state's electoral system is protected from foreign computer hackers.

S.B. 808
Status: Pending.
Creates NJ Cybersecurity Commission; appropriates $50,000.

S.B. 1028
Status: Pending.
Clarifies crime of unlawful access concerning certain password protected communications in electronic storage. 

S.B. 1403
Status: Pending.
Requires the Secretary of State to establish a secure Internet website for online voter registration; authorizes use of digitized signatures from New Jersey Motor Vehicle Commission's database.

S.B. 2485
Status: Pending.
Requires completion of a computer science class as part of the high school graduation requirements.

S.J.R. 78
Status: Pending.
Urges Secretary of State to assure the legislature and public that the state's electoral system is protected from foreign computer hackers.

New Mexico

H.B. 325
Status: Failed--adjourned. 
Relates to consumer protection; requires secure storage and disposal of data containing personal identifying information; requires notification to consumer reporting agencies, the office of the attorney general and card processors in certain circumstances; provides civil penalties.

New York

A.B. 307
Status: Pending
Relates to the protection of personal information by businesses.

A.B. 955
Status: Pending
Creates specific computer crimes as well as increasing penalties for crimes committed with the aid of a computer, provides for civil relief in cases of pornography on the internet, and penal sanctions in such cases.

A.B. 1699
Status: Pending
Creates the crimes of tampering with electronic monitoring equipment in the first and second degrees.

A.B. 6129
Status: Pending
Provides for enhanced protection of water supplies from and emergency planning for terrorism and cyber terroirism attacks.

A.B. 6866
Status: Pending
Relates to the data security act.

A.B. 8149
Status: Pending
Relates to cyber crimes and identity theft, increases penalties for certain acts involving use of personal information, fraud, tampering, theft and use of a computer to commit crimes.

A.B. 6133
Status: Pending.
Requires a comprehensive review and related report of all cyber security services performed by, and on behalf of the state; requires a detailed assessment of each and every cyber security need of the sate, including, its agencies and public authorities; provides for the detailed description of service used to address such needs; provides that no sensitive or confidential information shall be posted on a specified website.

A.B. 10129
Status: Pending.
Provides for the formation of a State Cyber Security Advisory board within the Division of Homeland Security and Emergency Services to advise the governor and Legislature on developments in cyber security and to make recommendations for protecting the State's critical infrastructure and information systems, and to promote the development of innovative, actionable policies to ensure that the state is in the forefront of public cyber security defense; requires the division to promulgate related regulations.

S.B. 502
Status: Pending.
Relates to computer tampering.

S.B. 1301
Status: Pending.
Amends the Penal Law, expands the definition of criminal act, for purposes of enterprise corruption, to include computer offenses, identity theft, criminal use of an access device and unlawful possession of personal identification information or a skimmer.

S.B. 3317
Status: Pending.
Amends the Penal Law, elevates all computer tampering offenses by one degree in severity.

S.B. 3404
Status: Pending.
Relates to cyber terrorism in the first and second degree.

S.B. 3405
Status: Pending.
Relates to cyber security reports; requires a comprehensive review of all cyber security services to be performed every five years; includes a detailed assessment of each and every cyber security need of the state; includes any local government entity.

S.B. 3407
Status: Pending.
Relates to a cyber security initiative; provides legislature findings and declares that repeated cyber intrusions into critical infrastructure, effecting government, private sectors business, and citizens of the state have demonstrated the need for improved cyber security; provides that all appointed members shall have expertise in cyber security, telecommunications, internet service delivery, public protection, computer system and network.

S.B. 4072
Status: Pending
Relates to cyber crimes, revises necessary definitions, provides for misdemeanor and felony classifications relative to petit theft, grand larceny, computer tampering, denial of service attacks, fraud, stolen property, identity theft and skimmer devices, specifies penalties, amends provisions relative to the service of process, updates references.

S.B. 4073
Status: Pending
Amends the General Business Law; establishes the New York State Online Privacy Protection and Internet Safety Act; Creates a data breach group, to consist of the attorney general, the secretary of state, the commissioner of the division of homeland security and emergency services, the chief information officer of the office of information technology services, and others. Its purposes shall be: to receive, evaluate, and act on any report of a security breach; to maintain database records and reports concerning security breaches; to establish cooperative working relationships with federal, state, and local police and investigators; and to insure appropriate and timely public notification of security breaches. 

S.B. 7382
Status: Pending
Relates to computer-related crimes.

S.B. 7601
Status: May 11, 2016; Signed by Governor. Chap. 516

Requires the Commissioner of Homeland Security & Emergency Management to review vulnerability analysis assessments from water suppliers; provides for certain recommendations, a list of all water suppliers required to file emergency plans, analyses of cyber attck risks, certain guidance and the promulgation of regulations related to response and prevention of terrorism and cyber terrorism by dam owners.

Oklahoma

S.B. 527
Status: Failed - adjourned.
Relates to computer crimes, relates to definitions used in the Oklahoma Computer Crimes Act, modifies definitions, relates to prohibited acts in the Oklahoma Computer Crimes Act, modifies inclusions, provides an effective date.

Oregon

S.B. 1538
Status: Signed by Governor. Chap. 110
Requires state agencies to notify Legislative Fiscal Office promptly concerning information security incidents and provide office with copies of and report results of information security assessments; requires heads of certain state agencies to provide annual report concerning information security to Joint Legislative Committee on Information Management and Technology; declares emergency, effective on passage.

Pennsylvania

H.B. 969
Status: Pending.
Amends Title 18 (Crimes and Offenses) of the Pennsylvania Consolidated Statutes, in computer offenses; provides for the offense of phishing and for protection from liability under certain circumstance.

H.B. 1909
Status: Pending.
Amends the act of April 9, 1929 (P.L.177, No.175), known as The Administrative Code of 1929, in organization of departmental administrative boards and commissions and of advisory boards and commissions; provides for Cybersecurity Innovation and Excellence Commission.

Rhode Island

H.B. 7406
Status: Pending.
Would define confidential information and prohibit the intentional and unauthorized access to another's computer, computer system or network with the intent to view, save, copy or download the confidential information contained therein. Violation of this act would constitute a felony and would be punishable pursuant to Section 11-52-5. This act would take effect upon passage.

S.B. 2219
Status: Pending
Relates to criminal offenses; relates to computer crime; prohibits the unauthorized and intentional access of another's computer with the intent to view confidential information; violators would be guilty of a felony and subject to imprisonment for up to 5 years and a fine of not more than $5,000.

S.B. 2584
Status: Pending.
Would define confidential information and prohibit the intentional and unauthorized access to another's computer, computer system or network with the intent to view, save, copy or download the confidential information contained therein. Violation of this act would constitute a felony and would be punishable pursuant to Section 11-52-5. This act would take effect upon passage.

Tennessee

H.B. 2209
Status: Failed-Adjourned.
Relates to Tennessee Bureau of Investigation; requires the comptroller of the treasury to create a report regarding cybersecurity that includes, at a minimum, a summary explaining necessary improvements to protect state data.

S.B. 2411
Status: Failed-Adjourned.
Relates to Tennessee Bureau of Investigation; requires the comptroller of the treasury to create a report regarding cybersecurity that includes, at a minimum, a summary explaining necessary improvements to protect state data.

Utah

H.B. 241
Status: March 23, 2016; Signed by Governor. Chap. 209
Enacts provisions related to unauthorized access to information technology; provides civil penalties for an individual who, without authorization from a protected computer's owner to obtain information from the protected computer, causes the transmission of a program, code, or command to be protected computer, or traffics in a technological access barrier that could be used to access the protected computer; provides that the prevailing party in a civil action is entitled to attorney fees.

H.B. 225
Status: Failed.

odifies the Criminal Code regarding offenses committed by means of electronic or computer functions; defines a denial of service and provides a penalty therefor; provides reporting a false emergency situation involving violence or harm, and also reporting the nonexistent emergency is at a specified location is a criminal offense; modifies the element of computer crimes to include a person acting without authorization or whose act exceed authorization and who commits a crime; relates to computer harassment.

S.B. 183
Status: Signed by Governor. Chap. 110
Amends provisions of the Public Safety Code regarding the Department of Public Safety; authorizes the State Bureau of Investigation to provide a state cybercrime unit to investigate various computer and network intrusion matters; requires the State Bureau of Investigation investigate alleged crimes or public corruption; relates to membership of the Motor Vehicle Safety Inspection Advisory Council; authorizes the off-duty use of emergency vehicles; repeals a section regarding drug analysis documents.

Virginia

H.B. 509
Status: Failed.
Relates to security of government information; relates to creation of the position of Chief Information Security Officer; creates the position of the Chief Information Security Officer of the Commonwealth (CISO); provides the full-time, classified position is appointed by the Governor and reports to the Chief Information Officer of the Commonwealth; the CISO is responsible for the security of government information and applications in the Commonwealth.

H.B. 799
Status: Failed.
Relates to income tax subtractions and credits for investments in technology businesses; modifies the qualified equity and subordinated debt investments tax credit by increasing the maximum amount of credits that can be issued each year, allocating the annual increase in credits to cybersecurity businesses, and allowing credit for investments in technology businesses with no more than a specified number of full-time employees.

H.B. 817
Status: Signed by Governor, Chap. 610
Relates to the Commonwealth Freedom of Information Act; relates to record exclusions, including those related to cybersecurity; relates to the rule of redaction; provides provisions for public records that contain both excluded and nonexcluded information and the duty redact those records; provides only portions of a record subject to exclusion may be withheld and all portions thereof not excluded shall be disclosed.

H.B. 922
Status: Pending--Carryover.
Relates to computer trespass; relates to government computers and computers used for public utilities; increases the Class 1 misdemeanor computer trespass crimes if the computer targeted is one that is exclusively for the use of, or used by or for, the Commonwealth of Virginia, a local government within the Commonwealth, or certain public utilities.

H.B. 923
Status: Failed.
Relates to computer trespass, relates to penalty, expands the crime of computer trespass to provide that the prohibited actions that constitute computer trespass are criminalized if done through intentionally

H.B. 929
Status: Failed.
Relates to promotion of cybersecurity in the Commonwealth; initiates several efforts to promote economic development, research and development, and workforce development of the cybersecurity industry in the Commonwealth; creates two new matching grant funds; adds one administered by the Innovation and Entrepreneurship Investment Authority for private entities that collaborate with one or more public institutions of higher education on research and development related to cybersecurity.

H.B. 1138
Status: Failed.
Relates to the Racketeer Influenced and Corrupt Organization Act; relates to computer crimes; relates to penalties; adds crimes contained in the Virginia Computer Crimes Act as qualifying offenses under the Virginia Racketeering Influenced and Corrupt Organization Act; provides that such crimes include computer fraud, computer trespass, transmission of spam, and theft of computer services.

H.B. 1343
Status: April 20, 2016; To Governor.
Relates to Commonwealth Competitiveness Board; establishes the Commonwealth Competitiveness Board to administer the Commonwealth Competitiveness Fund, which will be used to award grants for bioscience, biotechnology, commercialization of research, cybersecurity, genomics, other technological or scientific projects, regional economic development projects, and such other projects and programs specified in the General Appropriation Act.

S.B. 494
Status: Signed by Governor, Chap. 716
Relates to the Commonwealth Freedom of Information Act; relates to record exclusions, including those related to cybersecurity; relates to the rule of redaction; provides provisions for public records that contain both excluded and nonexcluded information and the duty redact those records; provides only portions of a record subject to exclusion may be withheld and all portions thereof not excluded shall be disclosed.

S.B. 747
Status: Failed.
Relates to promotion of cybersecurity in the Commonwealth; initiates several efforts to promote economic development, research and development, and workforce development of the cybersecurity industry in the Commonwealth; creates two new matching grant funds.

Washington

H.B. 1391
Status: Failed-Adjourned.
Aligns functions of the consolidated technology services agency, office of the chief information officer, and department of enterprise services. Establishes policies for the periodic review of state agency performance which may include but are not limited to analysis of cybersecurity plans.

H.B. 1468
Status: Failed-Adjourned.
Grants the governor authority to proclaim a state of emergency in the event of a cybersecurity incident.

H.B. 1469
Status: Failed-Adjourned.
Provides that state agencies shall not store payment credentials on state data systems.

H.B. 1470
Status: Failed-Adjourned.
Establishes a blue-ribbon panel on cybersecurity.

H.B. 1561
Status: Failed-Adjourned.
Concerns the consideration of information technology security matters.

H.B. 2243
Status: Failed-Adjourned.
Requires a study of incentive methods for attracting high-demand talent in information technology and cyber security to state agencies.

H.B. 2244
Status: Failed-Adjourned.
Creates the cyber security conditional loan program.

H.B. 2375
Status: April 1, 2016; Signed by Governor. Chap. 164
Concerns acts related to cybercrime; establishes the State Cybercrime Act; addresses the crimes of computer trespass, electronic data service interference, spoofing, electronic data tampering, and electronic data theft; creates related crimes in the first and second degree.

S.B. 6197
Status: Failed.

Concerns acts related to cybercrime.

S.B. 6528
Status: April 1, 2016; Signed by Governor. Chap. 237
Requires the Office of the State Chief Information Officer to implement a process for detecting, reporting, and responding to security incidents, develop plans and procedures to ensure the continuity of commerce for information resources that support the operations and assets of State agencies in the event of a security incident, work with certain entities to develop a related strategy, and collaborate with specified entity to develop the strategy.

Wyoming
Status: March 4, 2016; Signed by Governor; Chap. 35
Relates to administration of government; requires agencies to adopt policies for data collection, access, security and use; directs the State Chief Information Officer to develop guidelines for local governments for data collection, access, security and use; provides a definition; requires a report.

Powered by State Net logoLexisNexis General Terms and Conditions

Additional Resources