Identity theft; notification of breach of information system. (HB995)

Introduced By

Del. Bob Brink (D-Arlington)

Progress

Introduced
Passed Committee
Passed House
Passed Senate
Signed by Governor
Became Law

Description

Database breach notification. Requires an individual or a commercial entity that conducts business in Virginia and that owns or licenses computerized data that includes personal information to conduct in good faith a reasonable and prompt investigation when it becomes aware of a breach of the security of the system. If the investigation determines that misuse of information has or is reasonably likely to occur, the individual or commercial entity shall give notice to the Virginia resident as soon as possible. Notification must be made in good faith, in the most expedient time possible and without unreasonable delay, consistent with the legitimate needs of law enforcement and with any measures necessary to determine the scope of the breach and to restore the reasonable integrity of the computerized data system. The bill also contains alternative notification provisions. The Office of the Attorney General may bring an action in law or equity to address violations of this section and other appropriate relief. Read the Bill »

Status

01/23/2006: Failed to Pass in Committee

History

DateAction
01/11/2006Prefiled and ordered printed; offered 01/11/06 063925248
01/11/2006Referred to Committee on Science and Technology
01/20/2006Fiscal impact statement from DPB (HB995)
01/23/2006Continued to 2007 in Science and Technology