Can you summarize IACO Chapter 715C?

Short Summary

The provided legal document governs the protection of personal information in the event of a security breach. It defines a ‘breach of security’ as the unauthorized acquisition of personal information that compromises its security, confidentiality, or integrity. The document provides definitions for various terms such as ‘consumer,’ ‘personal information,’ and ‘identity theft.’ It outlines the notification requirements for security breaches involving personal information, specifying that affected consumers must be notified in a timely manner. The notification methods include written notice, electronic notice, or substitute notice. The document also allows for notification delays if it would impede a criminal investigation. It includes exemptions for persons who comply with greater protection requirements or regulations under certain federal acts. Non-compliance with the document may result in penalties, including damages sought by the attorney general on behalf of injured parties.

Whom does it apply to?

Individuals or entities that own or license computerized data containing a consumer's personal information, as well as those who maintain or possess personal information on behalf of another person

What does it govern?

Protection of personal information in the event of a security breach

What are exemptions?

Persons who comply with greater protection requirements or regulations under certain federal acts

What are the Penalties?

Non-compliance may result in penalties, including damages sought by the attorney general on behalf of injured parties

Jurisdiction

Iowa

Source

IACO Chapter 715C [https://reggi.cloud.regology.com/regulations/US-IACO/US-IACO_T_XVI_C_715C]

• Banking