SB0123 UT passed

Privacy and Cybersecurity Amendments

Government Records Technology Public Funds and Accounts Government Operations (State Issues) Sunsets and Repealers Data and Cyber Security Public Utilities and Technology Division of Technology Services Department of Government Operations Internet Protocols privacy

Plain-English summary

1. **ONE-SENTENCE SUMMARY:** SB0123 establishes new privacy and cybersecurity requirements for businesses in Utah to protect consumer data. 2. **KEY REQUIREMENTS:** - Implement reasonable data security measures to protect personal information. - Create a clear privacy policy that explains how consumer data is collected, used, and shared. - Allow consumers to access, correct, and delete their personal information upon request. - Report data breaches to affected consumers and the state within a specified timeframe. 3. **DEADLINES:** - Effective Date: January 1, 2024. - Compliance Deadline: Businesses must be fully compliant with the new requirements by this date. 4. **PENALTIES:** - Fines for non-compliance can reach up to $7,500 per violation. - The state may initiate enforcement actions against businesses that fail to comply. 5. **SMB IMPACT:** Small businesses will need to invest time and resources to update their data protection practices and privacy policies, but compliance can enhance customer trust and protect against potential fines.

Source description

Privacy and Cybersecurity Amendments


Not legal advice. Summaries are generated by AI from publicly available bill text and may contain errors or omissions. Always consult counsel before making compliance decisions.