BNA Privacy & Security Law Report
New State Attempts at Data Security Laws Offer Uncertain Promise
January 7, 2008
A legal standard for information security has started to emerge from state information privacy laws and Federal Trade Commission enforcement actions. A Nevada law that will take effect later this year and requires encryption in transit for all personal information takes a leap, the authors argue, by directly mandating encryption for personal data. While the Nevada law does not specify what type of encryption is required, proposed regulations in New Jersey would specify encryption for both stored and in transit communication. Compliance with detailed security standards could become unmanageable if multiple states specify distinct security requirements purporting to govern interstate computer systems, according to the authors.
Capabilities
Suggested News & Insights
Sidley Advises Verdane in Its Partnership With SmartboxMarch 12, 2026The New Cyber Doctrine of the United States: The Trump Administration Issues Cyber Strategy and Executive Order Targeting CybercrimeMarch 10, 2026U.S. Office of the Comptroller of the Currency Proposes Comprehensive Supervisory Framework for Payment Stablecoins Under GENIUS ActMarch 6, 2026From Tallahassee to Phoenix: States Move to Enforce National Security Limits on Access to Americans’ Sensitive Personal DataMarch 5, 2026Generative AI and Privilege: Practical Lessons from Two Early Decisions and What Comes NextMarch 3, 2026Congress Considers Right to Repair Bill for Vehicle OwnersMarch 2, 2026
- Stay Up To DateSubscribe to Sidley Publications
- Follow Sidley on Social MediaSocial Media Directory