Can I collect personal information from my customers in California in Michigan? What are the requirements?

To collect personal information from customers in California in Michigan, you must comply with the information security requirements outlined in 13 CACR Section 225.51 ^[2.1]. This includes complying with the California DMV Security Requirements for the Internet–Business Partners and the Information Practices Act of 1977, among other related statutes pertaining to information security. Additionally, Michigan has specific requirements for the issuance of enhanced driver licenses or enhanced official state personal identification cards, which include reasonable security measures to protect against unauthorized disclosure of personal information ^[4.1]. It is important to ensure that you are in compliance with both California and Michigan’s laws and regulations regarding the collection and protection of personal information.

Source(s):

• [2.1] Information Security Requirements.
• [4.1] Enhanced driver license or enhanced official state personal identification card; issuance; security measures; radio frequency identification technology; requirements in addition to requirements for standard driver license or official state personal identification card; licensing sanction; issuance of corrected license or card for address confidentiality program participants; definitions.

Jurisdiction

California, Michigan

• Privacy