The Mental Militia Forums

Activism Tactics => The Ghost => Topic started by: byron mc on February 03, 2008, 10:00:45 am

Title: Nevada passes first law requiring business to encrypt customer personal info
Post by: byron mc on February 03, 2008, 10:00:45 am
Nevada passes first law requiring business to encrypt customer personal information during transmission

"The law goes into effect on October 1, 2008.
In October 2008 merely transmitting customer personal information in an unencrypted format may violate this Nevada data security law. If an organization is not doing business in Nevada, it should monitor the developments in other states where it operates. History of the enactment of the data breach statutes suggests that the other states may soon follow."
Nevada passes first law requiring business to encrypt customer personal information during transmission
oct. 19, 2007

http://www.privsecblog.com/archives/state-legislation-nevada-passes-first-law-requiring-business-to-encrypt-customer-personal-information-during-transmission.html



Title: Re: Nevada passes first law requiring business to encrypt customer personal info
Post by: Roy J. Tellason on February 04, 2008, 12:29:03 am
What difference does it make if the data is only required to be "protected" by encryption while it's in transit?  There seem to be more than enough idiots out there in the management levels of BigCorps and BigGovs of all sorts that are quite happy to take such personal data,  and rather than keeping it on a server that's physically secure,  put it on a freakin' laptop where it then gets lost or stolen!