(772) 287-3366  ☰ ˟
(772) 287-3366   Get a Quote File a Claim Request Proof of Insurance
Logo
  • Home
  • Why RV Johnson?
    • About Us
    • Customer Reviews
    • Careers
  • Personal
    • Homeowners Insurance
    • Auto Insurance
    • Boat Insurance
    • Flood Insurance
    • Condo Insurance
    • Umbrella Insurance
  • Commercial
    • Commercial Property
    • General Liability
    • Business Auto
    • Workers Compensation
    • Umbrella/Excess Liability
    • Miscellaneous Coverages
  • Life & Health
    • Employee Benefits Package
    • Group Health Insurance
    • Group Dental Insurance
    • Group & Individual Life Insurance
    • Disability & Long-Term Care
    • Medicare & Medicare Supplements
  • Blog
  • Contact Us
    • Contact Us
    • Employee Directory
    • Hurricane Claims
Home > Blog > The Next Generation of Data Breach Notice Law — Florida's Information Protection Act of 2014
FRIDAY, JUNE 20, 2014

The Next Generation of Data Breach Notice Law — Florida's Information Protection Act of 2014

CyberspaceIn a harbinger of data-breach-laws to come, the Florida State Legislature just passed a new Florida Information Protection Act, which establishes tough new notification requirements for businesses and governmental entities. With the rapid increase in data breaches and growing awareness of the dangers, this Act may become a model for other states.

Florida’s Act provides new notice requirements and possible civil penalties arising out of a data breach incident when the notice requirements are not followed. It requires covered businesses and governmental entities to take “reasonable measures to protect and secure data in electronic form containing personal information.”

In the Florida Act, “personal information” is defined to include (1) a person’s name in combination with (a) a social security number, driver’s license number, passport number, and/or other similar number on a government ID, (b) a financial account, debit card or credit card number in combination with a related password or access code, (c) medical history information, or (d) a health insurance policy number or identification number; or (2) a user name or email address in combination with a password or security question and answer that would permit access to an online account. Under the Act, a “breach” is considered the “unauthorized access of data in electronic form containing personal information.”

With regard to the new notice requirements, the Act requires businesses and government entities to give notice to consumers “no later than 30 days after the determination of a breach or reason to believe that a breach occurred” unless the breach qualifies for exceptions. Exceptions include circumstances where information was released during an ongoing criminal investigation or the covered entity determines, after consultation with law enforcement, “that the breach has not and will not likely result in identify theft or other financial harm.” This latter exception must be documented in writing and it must be maintained for 5 years.

The Act sets out exactly what must be included in the notice to individuals. And if a breach could affect more than 500 people, the Attorney General’s office must also be notified within 30 days, along with other notice requirements.

Failure to adhere to the Act could be deemed “an unfair and deceptive trade practice” and also subject the covered entity to a civil penalty up to $500,000, with the penalties being imposed based on the number days the party is in violation of the Act. However, the Act does specifically state that it does not create a private right of action.

Forty-seven states have now enacted data breach notification statutes, but Florida is one of just seven states that require notification within a specific period of time – 30 days from determination of the breach. States that do not require a specific time period tend to use broader language merely requiring notice in a reasonable time. Florida is also one of only a handful of states that has expanded the definition of “personal information” to specifically include a user name/email address and password to access an online account.

(Source: jdsupra.com)
Posted 12:37 PM

Tags: florida, data breach, personal information breach, information protection act of 2014, florida law
Share |


No Comments


Post a Comment
Required
Required (Not Displayed)
Required


All comments are moderated and stripped of HTML.

NOTICE: This blog and website are made available by the publisher for educational and informational purposes only. It is not be used as a substitute for competent insurance, legal, or tax advice from a licensed professional in your state. By using this blog site you understand that there is no broker client relationship between you and the blog and website publisher.
Blog Archive
  • 2019
  • 2018
  • 2017
  • 2016
  • 2015
  • 2014

  • insurance(70)
  • florida(61)
  • stuart(36)
  • west palm beach(16)
  • home insurance(15)
  • agency news(15)
  • auto insurance(13)
  • life insurance(12)
  • homeowners(11)
  • hurricane preparedness(9)
  • flood insurance(8)
  • health insurance(7)
  • business insurance(6)
  • tequesta(6)
  • business owners(5)
  • commercial insurance(5)
  • martin county(5)
  • florida hurricanes(4)
  • term life insurance(3)
  • homeowners insurance(3)
  • video(3)
  • car insurance(3)
  • condo association(3)
  • cyber insurance(3)
  • award(2)
  • best places to work martin county(2)
  • group health insurance(2)
  • whole life insurance(2)
  • workers compensation insurance(2)
  • liability insurance(2)
  • holiday season(2)
  • tropical storm preparedness(2)
  • cyber liability risk(2)
  • water damage(2)
  • boat insurance(2)
  • tykes and teens(2)
  • condo insurance(2)
  • non owner insurance(1)
  • car safety(1)
  • car shopping(1)
  • stuart business(1)
  • condo owners(1)
  • bahamas(1)
  • driving safety tips(1)
  • auto insurance discounts(1)
  • deductibles(1)
  • regulations(1)
  • miscellaneous commercial coverages(1)
  • open enrollment 2015(1)
  • surety bonds(1)

View Mobile Version

The above description provides a brief overview of the terms and phrases used within the insurance industry. These definitions are not applicable in all states or for all insurance and financial products. This is not an insurance contract. Other terms, conditions and exclusions apply. Please read your official policy for full details about coverages. These definitions do not alter or modify the terms of any insurance contract. If there is any conflict between these definitions and the provisions of the applicable insurance policy, the terms of the policy control.

Get Social with us
Link to RV Johnson Insurance's Facebook Page Link to RV Johnson Insurance's Twitter Page Link to RV Johnson Insurance's LinkedIn Page Link to RV Johnson Insurance's Instagram Page
#RVJohnsonInsurance
Link to RV Johnson Insurance's Google Review Page
Link to the Refer a Friend Form
Link to the Join Our Newsletter Form
Our Location
Stuart Office
2041 E. Ocean Boulevard
Stuart, FL 34996

Phone: (772) 287-3366
Fax: (772) 287-4439
Toll Free: (800) 273-9800
Open: Monday - Friday
Hours:
 8:00 AM - 4:30 PM
 
© Copyright. All rights reserved. Powered by Insurance Website Builder. Click Here for our Web Site Privacy Policy.