Cyber Law And Legislation
Georgia Laws/Code
-
Social Security Number Protection Law
Georgia Law (O.C.G.A 10-1-393.8) forbids “publicly posting” or “publicly displaying” individual’s social security numbers (SSNs). It also forbids transferring SSNs over an unsecured connection, as well as using SSNs to access web sites, unless also requiring a PIN or password. http://law.justia.com/codes/georgia/2006/10/10-1-393.8.html
-
Security Breach Notification Law
Georgia’s breach notification law was amended in 2007 to include public universities and other state and local agencies. Personal information protected by the Georgia Personal Identity Protection Act of 2007 (O.C.G.A. 10-1-910 through 10-1-912), or GPIPA, includes the combination of an individual’s full name, or first initial and last name with one of the following, when not encrypted or redacted:
- Social Security Number
- Driver’s license number or state ID card number
- Account, credit card, or debit card number
- Account passwords, personal identification numbers, or other access codes
Any of these types of information are included without a name if a compromise would be sufficient to attempt to perform identity theft using that information. GPIPA does not include any publicly available information, including Open Records data, which includes most institution records and communications.
Breach notification laws from other states, notably California, may still apply if residents from other states are affected.
Point of Contact
USG Information Security and ePrivacy (via the USG HelpDesk) 706-583-2001, or 1-888-875-3697 (Toll free within Georgia). The ITS Helpdesk is available 24 hours a day, seven days a week.Related Links
- State by state quick reference of breach law coverage
- State by state official codes for breach laws
- Summary of breach law under Georgia Personal Identity Protection Act (2007)
- Interactive map of state breach notification laws
- Official Text — Georgia Senate Bill SB230/AP(2005)
- Official Text — Georgia Senate Bill SB236/AP(2007 Amendment)
Cybersecurity Infrastructure Surveillance Laws
- US PATRIOT ACT
- Foreign Intelligence Surveillance Act
- Electronic Communications Privacy Act
- Federally Funded State Managed Fusion Centers
- Office of National Intelligence Director’s Information Sharing Environment
- DHS Einstein Program (I, II, III)
- National Security Presidential Directive 54 (Amended by George Bush)
Cybersecurity Legislation in the 111th Congress
- H.R.2165: Bulk Power System Protection Act of 2009 (Barrow)
- S. 3193: International Cyberspace and Cybersecurity Coordination Act of 2010 (Kerry)
- Cybersecurity Enhancement Act of 2010, (Lipinski)
- S. 773: Cybersecurity Act of 2009 (Rockefeller)
- S. 778: To establish, within the Executive Office of the President, the Office of the National Cybersecurity Advisor (Rockefeller)
- S. 1438: Fostering a Global Response to Cyber Attacks Act (Gillibrand)
- S. 921: U.S. ICE Act of 2009 (Carper)
- H.R. 1319: Informed P2P User Act (Bono Mack)