Many small business are not aware of their responsibility or liability when it comes to securing and handling PI (personal information). It would be a good idea in this world of “cybercrime” to become familiar how this impacts you as a business owner. The data breach law in Nevada is NRS 603A “Security Of Personal Information”.
The current law was amended (AB 179) in May of 2015 and went into effect July 1st, 2015. The amendment added the following items as PI when unencrypted and combined with a person’s first name or first initial and last name.
-Driver authorization card numbers
-Medical identification or health insurance identification numbers
-User names, unique identifiers, or email addresses in combination with passwords, access codes, or security questions and answers permitting access to an online account
There are exemptions such as the last four digits of a social security number or “publicly available information”. A review of the bill and discussion of questions with a qualified legal representative would be prudent for business owners.