[Dataloss] Nevada Law Mandates Encryption of Electronically-Transmitted Personal Information
Adam Shostack
adam at homeport.org
Wed Oct 10 05:53:10 UTC 2007
too bad they exclude fax.
http://www.emergentchaos.com/archives/2005/06/florida_hospita.html
http://www.emergentchaos.com/archives/2006/02/brigham_and_wom.html
http://www.emergentchaos.com/archives/2006/03/cibc_one_customers_wire_t.html
On Tue, Oct 09, 2007 at 03:32:12PM +0000, security curmudgeon wrote:
|
|
| ---------- Forwarded message ----------
| From: John Payton <john.payton at gmail.com>
| To: privacy at whitestar.linuxbox.org
|
| Nevada has enacted a data security law that mandates encryption for the
| transmission of personal information (see Nev. Rev. Stat. § 597.970
| (2005)). Specifically, the Nevada encryption statute generally prohibits
| a business in Nevada from transferring "any personal information of a
| customer through an electronic transmission," except via facsimile,
| "unless the business uses encryption to ensure the security of electronic
| transmission."[1] The Nevada encryption law goes into effect on October 1,
| 2008.
|
| More: http://mofo.com/news/updates/bulletins/12866.html
| _______________________________________________
| Dataloss Mailing List (dataloss at attrition.org)
| http://attrition.org/dataloss
|
| Tenable Network Security offers data leakage and compliance monitoring
| solutions for large and small networks. Scan your network and monitor your
| traffic to find the data needing protection before it leaks out!
| http://www.tenablesecurity.com/products/compliance.shtml
More information about the Dataloss
mailing list