Skip to main content
Colorado General AssemblyToggle Main Menu
Agency NameToggle Agency Menu
HB18-1128

Protections For Consumer Data Privacy

Concerning strengthening protections for consumer data privacy.
Session:
2018 Regular Session
Subject:
Telecommunications & Information Technology
Bill Summary

Data privacy - required policies - covered and governmental entities. Except for conduct in compliance with applicable federal, state, or local law, the act requires covered and governmental entities in Colorado that maintain paper or electronic documents (documents) that contain personal identifying information (personal information) to develop and maintain a written policy for the destruction and proper disposal of those documents. Entities that maintain, own, or license personal information, including those that use a nonaffiliated third party as a service provider, shall implement and maintain reasonable security procedures for the personal information. The notification laws governing disclosure of unauthorized acquisitions of unencrypted and encrypted computerized data are expanded to specify who must be notified following such unauthorized acquisition and what must be included in such notification.
(Note: This summary applies to this bill as enacted.)

Status

Introduced
Passed
Became Law

Menu

Bill Text

Colorado legislature email addresses ending in @state.co.us are no longer active. Please replace @state.co.us with @coleg.gov for Colorado legislature email addresses.  Details