Welcome to Scribd. Sign in or start your free trial to enjoy unlimited e-books, audiobooks & documents.Find out more
Download
Standard view
Full view
of .
Look up keyword
Like this
1Activity
0 of .
Results for:
No results containing your search query
P. 1
Kentucky HB 5: Data Security Bill

Kentucky HB 5: Data Security Bill

Ratings: (0)|Views: 603|Likes:
Published by Shane Vander Hart
Kentucky House Bill 5 calls for tightened data security for all state agencies.
Kentucky House Bill 5 calls for tightened data security for all state agencies.

More info:

Published by: Shane Vander Hart on Jan 21, 2014
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as DOC, PDF, TXT or read online from Scribd
See more
See less

04/23/2014

pdf

text

original

 
UNOFFICIAL COPY AS OF 01/21/1414 REG. SESS.
14 RS BR 862
AN ACT relating to the safety and security of personal information held y pulic agencies!
S"CT#$N 1! A N"% S"CT#$N $& 'RS C(A)T"R 61 #S CR"AT"* T$ R"A* AS &$++$%S,
 Be it enacted by the General Assembly of the Commonwealth of Kentucky: As used in Sections 1 to 4 of this Act:(1) A!ency means: (a) "he e#ecuti$e branch of state !o$ernment of the Commonwealth of  Kentucky%(b) &$ery county' city' municial cororation' urbancounty !o$ernment' charter county !o$ernment' consolidated local !o$ernment' and unified local !o$ernment%(c) &$ery or!ani*ational unit' deartment' di$ision' branch' section' unit' office' administrati$e body' ro!ram cabinet' bureau' board' commission' committee' subcommittee' ad hoc committee' council' authority' ublic a!ency' instrumentality' intera!ency body' secial urose !o$ernmental entity' or ublic cororation' of an entity secified in ara!rahs (a) or (b) of this subsection or created' established' or controlled by an entity secified in ara!rahs (a) or (b) of this subsection%(d) &$ery ublic school district in the Commonwealth of Kentucky% and (e) &$ery ublic institution of ostsecondary education' includin! e$ery ublic uni$ersity in the Commonwealth of Kentucky and ublic colle!e of the entire Kentucky Community and "echnical Colle!e System+(,) Commonwealth -ffice of "echnolo!y means the office established by K.S 4,+/,4%(0) &ncrytion means the con$ersion of data usin! technolo!y that: (a) eets or e#ceeds the le$el adoted by the 2ational 3nstitute of Standards
)age 1 of 21
BR-862--!1-- . 862 . 16/0aceted
 
UNOFFICIAL COPY AS OF 01/21/1414 REG. SESS.
14 RS BR 862
"echnolo!y as art of the ederal 3nformation 5rocessin! Standards: and (b) .enders the data indeciherable without the associated cryto!rahic key to deciher the data%(4) 6aw enforcement a!ency means any lawfully or!ani*ed in$esti!ati$e a!ency' sheriff7s office' olice unit' or olice force of federal' state' county' urbancounty  !o$ernment' charter county' city' consolidated local !o$ernment' unified local  !o$ernment' or any combination of these entities' resonsible for the detection of crime and the enforcement of the !eneral criminal federal and state laws%(8) 2onaffiliated third arty means any erson that: (a) 9as a contract or a!reement with an a!ency to ro$ide ser$ices or resources to the a!ency% and (b) .ecei$es ersonal information from the a!ency ursuant to the contract or a!reement%() 5ersonal information means an indi$idual7s first name or first initial and last name% ersonal mark% or uni;ue biometric or !enetic rint or ima!e' in combination with one (1) or more of the followin! data elements:(a) An account number' credit card number' or debit card number that' in combination with any re;uired security code' access code' or assword' would ermit access to an account%(b) A Social Security number% (c) A ta#ayer identification number% (d) A dri$er7s license number' state identification card number' or other indi$idual identification number issued by any a!ency%(e) A assort number or other identification number issued by the <nited  States !o$ernment% or (f) edical information% (/) (a) 5ublic record or record' as established by K.S 1/1+41=' means all books'
)age 2 of 21
BR-862--!1-- . 862 . 16/0aceted
 
UNOFFICIAL COPY AS OF 01/21/1414 REG. SESS.
14 RS BR 862
 aers' mas' hoto!rahs' cards' taes' disks' diskettes' recordin!s' and other documentary materials' re!ardless of hysical form or characteristics' which are reared' owned' used' in the ossession of or retained by a  ublic a!ency+(b) 5ublic record does not include any records owned by a ri$ate erson or cororation that are not related to functions' acti$ities' ro!rams or oerations funded by state or local authority%(>) .easonable security rocedures and ractices means data security rocedures and ractices de$eloed in !ood faith and set forth in a written security information olicy%(?) Security breachmeans: (a) 1+ "he unauthori*ed ac;uisition' distribution' disclosure' destruction' maniulation' or release of unencryted or unredacted records or data that comromises or the a!ency reasonably belie$es may comromise the security' confidentiality' or inte!rity of ersonal information% or ,+ "he unauthori*ed ac;uisition' distribution' disclosure' destruction' maniulation' or release of unencryted records or data containin!  ersonal information alon! with the confidential rocess or key to unencryt the records or data+(b) Security breach does not include the !oodfaith ac;uisition of ersonal information by an emloyee or a!ent of the a!ency for the uroses of the a!ency if the ersonal information is used for a urose related to the a!ency and is not sub@ect to unauthori*ed disclosure+
S"CT#$N 2! A N"% S"CT#$N $& 'RS C(A)T"R 61 #S CR"AT"* T$ R"A* AS &$++$%S,
(1) (a) An a!ency or nonaffiliated third arty that maintains or otherwise  ossesses ersonal information' re!ardless of the form in which the
)age 3 of 21
BR-862--!1-- . 862 . 16/0aceted

You're Reading a Free Preview

Download
scribd
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->