Can you summarize 18.2 VACV Chapter 6, Article 5?

Short Summary

This legal document governs the breach of personal information notification in the Commonwealth of Virginia. It applies to individuals or entities that own or license computerized data containing personal information. The document defines ‘breach of the security of the system’ as the unauthorized access and acquisition of unencrypted and unredacted computerized data compromising the security or confidentiality of personal information. It requires the disclosure of any breach to the Office of the Attorney General and affected residents without unreasonable delay. The document provides various methods of notice and specifies the information that should be included in the notice. It also outlines exemptions for certain entities and provides compliance options for entities with their own notification procedures or regulated by specific laws. The Attorney General may impose civil penalties for violations, and individuals may recover direct economic damages.

Whom does it apply to?

Individuals or entities that own or license computerized data containing personal information

What does it govern?

Breach of personal information notification

What are exemptions?

Exemptions for certain entities and compliance options for entities with their own notification procedures or regulated by specific laws

What are the Penalties?

Civil penalties imposed by the Attorney General for violations, and individuals may recover direct economic damages

Jurisdiction

Virginia

Source

18.2 VACV Chapter 6, Article 5 [https://reggi.cloud.regology.com/regulations/US-VACV/US-VACV_T_18.2_C_6_SC_5]

• Banking