Skip to main content
Menu Icon
Close

InfoBytes Blog

Financial Services Law Insights and Observations

Pennsylvania amends privacy bill

Privacy, Cyber Risk & Data Security State Issues State Legislation Pennsylvania Data Breach

Privacy, Cyber Risk & Data Security

On November 3, the Pennsylvania governor signed SB 696 to amend the Breach of Personal Information Notification Act. The bill, among other things, prohibits employees of the Commonwealth from using non-secured Internet connections. The bill also includes data storage policy provisions, which establish that an entity that maintains, stores, or manages computerized data on behalf of Pennsylvania that constitutes personal information must develop a policy to govern reasonably proper storage of the personal information. The bill further notes that a goal of the policy must be to reduce the risk of future breaches of the security of the system. The bill is effective 180 days after approval by the governor.