Ask Reggi Your Question Now
Can you summarize MTCO 33-19-321?
Disclosure of Information > Computer security breach
Short Summary
This legal document, part of the Montana Code related to insurance and insurance companies, governs the disclosure of information in the event of a computer security breach. It requires any licensee or insurance-support organization conducting business in Montana, and owning or licensing computerized data containing personal information, to provide notice of any breach of the system’s security to individuals whose unencrypted personal information was or is reasonably believed to have been acquired by an unauthorized person. The notice must be provided without unreasonable delay, unless it would impede a criminal investigation as determined by a law enforcement agency. Additionally, any person who maintains computerized data containing personal information and performs an insurance function must notify the licensee or insurance-support organization of any breach. Licensees, insurance-support organizations, and persons to whom personal information is disclosed must develop and maintain an information security policy and security breach notice procedures. The document also provides definitions for terms such as ‘breach of the security of the system’ and ‘personal information’.
Whom does it apply to?
Licensees, insurance-support organizations, and persons to whom personal information is disclosed pursuant to this part
What does it govern?
Disclosure of Information
What are exemptions?
No exemptions are mentioned.
What are the Penalties?
No specific penalties are mentioned.
Jurisdiction
Montana