Sen. DiPalma’s bill that protects employees after data breaches passed by the Senate
STATE HOUSE – The Senate today passed legislation (2022-S 2664) sponsored by Sen. Louis. P. DiPalma which would protect public employees upon the occurrence of data breaches.
The legislation amends the Identity Theft Protection Act of 2015, which was also sponsored by Senator DiPalma, by requiring municipal agencies, state agencies, or persons to report data breaches in a timelier manner.
“Time and resources are essential when dealing with data breaches of confidential information systems and as we saw with the recent RI Public Transit Authority data breach, these cybercrimes have the potential to negatively impact tens of thousands of Rhode Islanders and their families. This bill will better protect stored data and strengthen our response times and corrective actions, ensuring that any damage resulting from data breaches is recognized and addressed in the most expedient manner possible,” said Senator DiPalma (D-Dist. 12, Middletown, Little Compton, Newport, Tiverton).
According to the previous legislation, governmental agencies that stored personal information had to disclose a data breach to affected people within 45 days of the incursion. The new legislation reduces that time frame to 15 days. The legislation also provides for identity theft protection services to be offered to any affected individual for a minimum of five years and for any individual under the age of 18, identity protection would be offered until their 18th birthday and for no less than the following two years.
The bill now heads to the House for consideration where Rep. Terri Cortvriend (D-Dist. 72, Portsmouth, Middletown) has introduced the legislation (2022-H 7884).