Can you summarize Civ Code CACL 1798.29?

Short Summary

This legal document, known as the Information Practices Act of 1977, governs the disclosure of security breaches involving personal information in the state of California. It applies to agencies that own or license computerized data containing personal information, as well as agencies that maintain computerized data they do not own. The document requires agencies to disclose any breach of the security of the system to California residents whose personal information was acquired by an unauthorized person. The disclosure must be made in a timely manner and without unreasonable delay. The document also outlines the requirements for the content and format of the security breach notification, including the use of plain language and specific headings. Additionally, the document allows for the delay of notification if it would impede a criminal investigation. There are no specified penalties for non-compliance mentioned in the document.

Whom does it apply to?

Agencies that own or license computerized data containing personal information, agencies that maintain computerized data they do not own

What does it govern?

Disclosure of security breaches involving personal information

What are exemptions?

Notification may be delayed if it would impede a criminal investigation

What are the Penalties?

Not specified

Jurisdiction

California

Source

Civ Code CACL 1798.29 [https://reggi.cloud.regology.com/regulations/US-CACL/US-CACL_T_CIV_T_3_P_4_T_1.8_C_1_SC_7_S_1798.29]

• Banking