California Law On Notice Of Security Breach
What does it mean?
- State of California law that requires businesses and state government agencies to use reasonable and appropriate security measures to protect specified personal information of California residents
- Intended to give individuals early warning if an unauthorized person has obtained access to their personal information
- Protects unencrypted computerized data including certain personal information and other personal information with the individual’s name and either their social security number, driver’s license number, financial account information, medical information or health insurance information
Who is affected?
- State of California government agencies
- ny person or business that does business in California
What is the impact? (penalties and fines)
- Any injured customer may institute a civil action to recover damages
- Civil penalties of $500 per violation or up to $3,000 per violation for willful, intentional or reckless violations
How to reach compliance?
- Implement reasonable procedures to safeguard and control access to personal information in your control
- Use a cross-cut shredder to destroy paper customer records containing personal information
- In the event of a security breach, notice must be given to any persons who are residents of the State of California
- Notice must be given in the most expedient time possible and without unreasonable delay
Contact Us and a Cintas Document Management expert will do a no-obligation evaluation of your facility's information management needs.