A person who owns/licenses computerized data that includes UTA resident personal data must conduct a reasonable and prompt investigation when aware of a breach.
To determine the likelihood that personal data has been or will be misused for fraud.
Defined cyber security breach notification requirements; must report to Cyber Center.
Utah Cyber Center (UCC) must collaborate with information technology directors, cybersecurity professionals, or equivalent individuals representing political subdivisions
Set governmental entity cyber security breach notification requirements to UCC.
Established allowed use of authorized domain extensions for government websites.
Legislative History
On Jan. 16, 2024, bill was introduced in Senate; on Jan. 31, 2024, bill passed Senate.
On Feb. 1, 2024, bill was introduced in House; on Feb. 14, 2024, bill passed House.
Effectiveness
Pending the approval of the governor, bill provision become effective on May 1, 2024.
Mar. 2024 UTA LEG Governor Approval
On Mar. 19, 2024, UTA LEG governor approved bill SB 98, in effect on May 1, 2024.
Regulators
UTA LEG
Entity Types
CNSM; Corp
Reference
Bill, 3/19/2024; Bill SB0098S03, 2/16/2024; Bill SB0098S03, SB0098, 2/14/2024; Citation: *UTA LEG* 13-44-202, 63D-2-102, 63D-2-105;