Can I ignore my obligations as a service provider with access to personal information in Wyoming? What are the requirements?

Based on the provided context documents, as a service provider with access to personal information in Wyoming, you cannot ignore your obligations. You are required to comply with the regulations regarding Requests for Information and Access to Public Records ^[1.1], When Authorization Required for Disclosure of Nonpublic Personal Health Information ^[2.2], Requests from Governmental Entities ^[1.2], Computer security breach; notice to affected persons ^[5.1], Limits on Sharing Account Number Information for Marketing Purposes ^[2.3], and Other Exceptions to Notice and Opt Out Requirements for Disclosure of Nonpublic Personal Financial Information ^[2.1].

Requirements for Service Providers with Access to Personal Information in Wyoming

1. Requests for Information and Access to Public Records ^[1.1]
2. Information requests are preferred to be submitted electronically or in writing to the Office of the Director, Department of Workforce Services.
3. All requests which require payment should be recorded using an invoice. All payments shall be transmitted to the Fiscal Division for deposit with the State Treasurer.
4. Public records of the Department shall be available for inspection by any person at reasonable times, subject to reasonable restrictions imposed by the Director.
5. The Director shall deny the right to inspect any information whose disclosure is prohibited by W. S. § 27-14-805.
6. The Director or designee shall issue a response to all written requests for access to public records within thirty (30) days, after the request is received by the Department.
7. When Authorization Required for Disclosure of Nonpublic Personal Health Information ^[2.2]
8. A licensee shall not disclose nonpublic personal health information about a consumer or customer unless an authorization is obtained from the consumer or customer whose nonpublic personal health information is sought to be disclosed.
9. Nothing in this section shall prohibit, restrict or require an authorization for the disclosure of nonpublic personal health information by a licensee for the performance of certain insurance functions.
10. Requests from Governmental Entities ^[1.2]
11. Requests from certain governmental entities for records shall be furnished free of charge.
12. Computer security breach; notice to affected persons ^[5.1]
13. An individual or commercial entity that conducts business in Wyoming and that owns or licenses computerized data that includes personal identifying information about a resident of Wyoming shall, when it becomes aware of a breach of the security of the system, conduct in good faith a reasonable and prompt investigation to determine the likelihood that personal identifying information has been or will be misused.
14. If the investigation determines that the misuse of personal identifying information about a Wyoming resident has occurred or is reasonably likely to occur, the individual or the commercial entity shall give notice as soon as possible to the affected Wyoming resident.
15. Notice required under subsection (a) of this section shall be clear and conspicuous and shall include, at a minimum, certain information.
16. Limits on Sharing Account Number Information for Marketing Purposes ^[2.3]
17. A licensee shall not, directly or through an affiliate, disclose, other than to a consumer reporting agency, a policy number or similar form of access number or access code for a consumer’s policy or transaction account to any nonaffiliated third party for use in telemarketing, direct mail marketing or other marketing through electronic mail to the consumer.
18. Other Exceptions to Notice and Opt Out Requirements for Disclosure of Nonpublic Personal Financial Information ^[2.1]
19. The requirements for initial notice to consumers in Section 5(a)(ii), the opt out in Sections 8 and 11, and service providers and joint marketing in Section 14 do not apply when a licensee discloses nonpublic personal financial information:
20. With the consent or at the direction of the consumer, provided that the consumer has not revoked the consent or direction;
21. To protect the confidentiality or security of a licensee’s records pertaining to the consumer, service, product or transaction;
22. To protect against or prevent actual or potential fraud or unauthorized transactions;
23. For required institutional risk control or for resolving consumer disputes or inquiries;
24. To persons holding a legal or beneficial interest relating to the consumer; or
25. To persons acting in a fiduciary or representative capacity on behalf of the consumer.

Therefore, as a service provider with access to personal information in Wyoming, you must comply with the regulations regarding Requests for Information and Access to Public Records, When Authorization Required for Disclosure of Nonpublic Personal Health Information, Requests from Governmental Entities, Computer security breach; notice to affected persons, Limits on Sharing Account Number Information for Marketing Purposes, and Other Exceptions to Notice and Opt Out Requirements for Disclosure of Nonpublic Personal Financial Information.

Source(s):

• [1.1] Requests for Information and Access to Public Records.
• [2.1] Other Exceptions to Notice and Opt Out Requirements for Disclosure of Nonpublic Personal Financial Information.
• [2.2] When Authorization Required for Disclosure of Nonpublic Personal Health Information.
• [2.3] Limits on Sharing Account Number Information for Marketing Purposes.
• [1.2] Requests from Governmental Entities.
• [5.1] Computer security breach; notice to affected persons

Jurisdiction

Wyoming

• Privacy