Mark L. Keam
- Democratic
Insurance data security; required programs and notifications. Establishes standards for insurance data security and for the investigation of a cybersecurity event and the notification to the Commissioner of Insurance and affected consumers of a cybersecurity event. The bill requires insurers to develop, implement, and maintain a comprehensive written information security program based on an assessment of its risk and that contains administrative, technical, and physical safeguards for the protection of nonpublic information and its information system. The bill requires investigation of potential cybersecurity events and prescribes standards for such investigations. The bill requires that the notification of the occurrence of a cybersecurity event provided by an insurer or other entity to the Commissioner and affected consumers to include certain information prescribed by the bill. The bill requires the Commissioner to adopt rules and regulations regarding data security and authorizes the Commissioner to investigate potential violations.
Insurance data security; required programs and notifications. Establishes standards for insurance data securityand for the investigation of a cybersecurity event and the notificationto the Commissioner of Insurance and affected consumers of a cybersecurityevent. The bill requires insurers to develop, implement, and maintaina comprehensive written information security program based on anassessment of its risk and that contains administrative, technical,and physical safeguards for the protection of nonpublic informationand its information system. The bill requires investigation of potentialcybersecurity events and prescribes standards for such investigations.The bill requires, in the event of a cybersecurity event, that aninsurer or other entity notify the Commissioner and affected consumerswith certain information prescribed by the bill. The bill requiresthe Commissioner to adopt rules and regulations regarding data securityand authorizes the Commissioner to investigate potential violations.
Approved by Governor-Chapter 264 (effective 7/1/20)
Enrolled Bill communicated to Governor on March 3, 2020
Governor's Action Deadline 11:59 p.m., March 10, 2020
Signed by President
Impact statement from SCC (HB1334ER)
Enrolled
Signed by Speaker
Passed Senate (40-Y 0-N)
Read third time
Constitutional reading dispensed (39-Y 0-N)
Reported from Commerce and Labor (15-Y 0-N)
Constitutional reading dispensed
Referred to Committee on Commerce and Labor
Impact statement from SCC (HB1334E)
Passed House (99-Y 0-N 1-A)
Read third time and passed House (100-Y 0-N)
VOTE: Passage (100-Y 0-N)
Reconsideration of passage agreed to by House
VOTE: Passage #2 (99-Y 0-N 1-A)
Printed as engrossed 20104824D-E
Engrossed by House as amended HB1334E
Committee amendments agreed to
Read second time
Read first time
Subcommittee recommends reporting with amendments (9-Y 0-N)
Reported from Communications, Technology and Innovation with amendments (20-Y 0-N)
House subcommittee amendments and substitutes offered
Assigned CT & I sub: Communications
Impact statement from SCC (HB1334)
Referred to Committee on Communications, Technology and Innovation
Prefiled and ordered printed; offered 01/08/20 20104824D
Bill Text Versions | Format |
---|---|
Impact statement from SCC (HB1334) | HTML |
Engrossed by House as amended HB1334E | HTML |
Bill text as passed House and Senate (HB1334ER) | HTML |
Acts of Assembly Chapter text (CHAP0264) | HTML |
Document | Format |
---|---|
Amendment: HB1334AH | HTML |
Data on Open States is updated periodically throughout the day from the official website of the Virginia General Assembly.
If you notice any inconsistencies with these official sources, feel free to file an issue.