BNA Privacy & Security Law Report
New State Attempts at Data Security Laws Offer Uncertain Promise
January 7, 2008
A legal standard for information security has started to emerge from state information privacy laws and Federal Trade Commission enforcement actions. A Nevada law that will take effect later this year and requires encryption in transit for all personal information takes a leap, the authors argue, by directly mandating encryption for personal data. While the Nevada law does not specify what type of encryption is required, proposed regulations in New Jersey would specify encryption for both stored and in transit communication. Compliance with detailed security standards could become unmanageable if multiple states specify distinct security requirements purporting to govern interstate computer systems, according to the authors.
Capabilities
Suggested News & Insights
Cyber Strategy at the AI Frontier: President Trump Releases Executive Order to Promote Advanced Artificial Intelligence Innovation and SecurityJune 4, 2026When “The Devil Made Me Do It” Is Not a Defense: Lessons in AI Governance and Organizational Oversight from an SDNY DecisionJune 4, 2026Risk Analysis in the Crosshairs: Four Recent Ransomware Resolutions Preview the HIPAA Security Rule AmendmentsJune 1, 2026Sidley Elects New Partnership Class of 52June 1, 2026New York Department of Financial Services Issues Coordinated Guidance on Frontier AI Cybersecurity RisksMay 28, 2026Chambers 2026 Global Practice Guide for Artificial IntelligenceMay 27, 2026
- Stay Up To DateSubscribe to Sidley Publications
- Follow Sidley on Social MediaSocial Media Directory