From VitalLaw’s weekly roundup of privacy and cybersecurity legislation:
Augmented data broker, data breach requirements advance in California. The California state Assembly Appropriations Committee voted on July 9 to pass a bill that would require data brokers in the state to disclose additional information regarding their data-collection practices. S.B. 361, Reg Sess., would, if enacted, require data brokers to provide additional information to the state, including whether a broker collects specified types of information and to report if they have, in the past year, shared or sold consumers’ data to a foreign actor, the federal government, other state governments, law enforcement, or the developer of an artificial intelligence system or model (CPR, July 10).
Meanwhile, on July 9, the California state House Judiciary Committee voted to approve S.B. 446, Reg Sess., a bill that would require businesses to disclose breaches of personal data within 30 days of their discovery and mandate the submission of notices affecting more than 500 Californians. The bill would also require that submission to the attorney general be made within 15 calendar days of discovery or notification of the breach (CPR, July 9).
Read more about other legal news at Wolters Kluwer VitalLaw.