SB0123
UT
passed
Privacy and Cybersecurity Amendments
Government Records
Technology
Public Funds and Accounts
Government Operations (State Issues)
Sunsets and Repealers
Data and Cyber Security
Public Utilities and Technology
Division of Technology Services
Department of Government Operations
Internet Protocols
privacy
Plain-English summary
1. **ONE-SENTENCE SUMMARY:** SB0123 establishes new privacy and cybersecurity requirements for businesses in Utah to protect consumer data.
2. **KEY REQUIREMENTS:**
- Implement reasonable data security measures to protect personal information.
- Create a clear privacy policy that explains how consumer data is collected, used, and shared.
- Allow consumers to access, correct, and delete their personal information upon request.
- Report data breaches to affected consumers and the state within a specified timeframe.
3. **DEADLINES:**
- Effective Date: January 1, 2024.
- Compliance Deadline: Businesses must be fully compliant with the new requirements by this date.
4. **PENALTIES:**
- Fines for non-compliance can reach up to $7,500 per violation.
- The state may initiate enforcement actions against businesses that fail to comply.
5. **SMB IMPACT:** Small businesses will need to invest time and resources to update their data protection practices and privacy policies, but compliance can enhance customer trust and protect against potential fines.
Source description
Privacy and Cybersecurity Amendments
Not legal advice. Summaries are generated by AI from publicly available bill text and may contain errors or omissions. Always consult counsel before making compliance decisions.