[Dataloss] Nevada Law Mandates Encryption of Electronically-Transmitted Personal Information

Chris Walsh cwalsh at cwalsh.org
Tue Oct 9 16:04:01 UTC 2007 

Does this mean that Nevada has changed the definition of 
"encryption" that they use in their laws?

Last I looked, the definition they used was very broad (http://www.leg.state.nv.us/Statutes/70th/Stats199916.html#Stats199916page2704):

Encryption. means the use of any protective or disruptive measure, including, without limitation, cryptography, enciphering, encoding or a computer contaminant, to:

    1.  Prevent, impede, delay or disrupt access to any data, information, image, program, signal or sound;

    2.  Cause or make any data, information, image, program, signal or sound unintelligible or unusable; or

    3.  Prevent, impede, delay or disrupt the normal operation or use of any component, device, equipment, system or network.


On Tue, Oct 09, 2007 at 03:32:12PM +0000, security curmudgeon wrote:
> 
> 
> ---------- Forwarded message ----------
> From: John Payton <john.payton at gmail.com>
> To: privacy at whitestar.linuxbox.org
> 
> Nevada has enacted a data security law that mandates encryption for the 
> transmission of personal information (see Nev. Rev. Stat. § 597.970 
> (2005)).  Specifically, the Nevada encryption statute generally prohibits 
> a business in Nevada from transferring "any personal information of a 
> customer through an electronic transmission," except via facsimile, 
> "unless the business uses encryption to ensure the security of electronic 
> transmission."[1] The Nevada encryption law goes into effect on October 1, 
> 2008.
> 
> More: http://mofo.com/news/updates/bulletins/12866.html

> _______________________________________________
> Dataloss Mailing List (dataloss at attrition.org)
> http://attrition.org/dataloss
> 
> Tenable Network Security offers data leakage and compliance monitoring
> solutions for large and small networks. Scan your network and monitor your
> traffic to find the data needing protection before it leaks out!
> http://www.tenablesecurity.com/products/compliance.shtml

More information about the Dataloss mailing list