Can you summarize RIGL Title 11, Chapter 49.3?

Short Summary

The Identity Theft Protection Act of 2015 governs the breach of security of personal information maintained by municipal agencies, state agencies, and persons. It defines ‘breach of the security of the system’ as unauthorized access or acquisition of unencrypted, computerized data information compromising the security, confidentiality, or integrity of personal information. Good-faith acquisition of personal information by an employee or agent of the agency for agency purposes is not considered a breach, provided the information is not used or further disclosed without authorization. The Act provides definitions for terms such as ’encrypted,’ ‘health insurance information,’ ‘medical information,’ ‘municipal agency,’ ‘owner,’ ‘person,’ and ‘personal information.’ It also includes provisions for notice methods and exemptions for publicly available information. The Act does not specify penalties for non-compliance or violation.

Whom does it apply to?

Municipal agencies, state agencies, and persons

What does it govern?

Breach of security of personal information maintained by municipal agencies, state agencies, and persons

What are exemptions?

Good-faith acquisition of personal information by an employee or agent of the agency for agency purposes is not considered a breach, provided the information is not used or further disclosed without authorization. Exemptions are also mentioned for publicly available information.

What are the Penalties?

The Act does not specify penalties for non-compliance or violation.

Jurisdiction

Rhode Island

Source

RIGL Title 11, Chapter 49.3 [https://reggi.cloud.regology.com/regulations/US-RIGL/US-RIGL_T_11_C_49.3]

• Cyber Security