|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Ch. 532
|
|
|
|
|
2007 Laws of Maryland
|
|
|
|
|
|
|
|
|
|
|
(I) PUBLICLY AVAILABLE INFORMATION THAT IS
LAWFULLY MADE AVAILABLE TO THE GENERAL PUBLIC FROM FEDERAL, STATE,
OR LOCAL GOVERNMENT RECORDS;
(II) INFORMATION THAT AN INDIVIDUAL HAS CONSENTED
TO HAVE PUBLICLY DISSEMINATED OR LISTED; OR
(III) INFORMATION THAT IS DISSEMINATED OR LISTED IN
ACCORDANCE WITH THE FEDERAL HEALTH INSURANCE PORTABILITY AND
ACCOUNTABILITY ACT.
(D)(E) "RECORDS" MEANS INFORMATION THAT IS INSCRIBED ON A
TANGIBLE MEDIUM OR THAT IS STORED IN AN ELECTRONIC OR OTHER MEDIUM
AND IS RETRIEVABLE IN PERCEIVABLE FORM.
|
|
|
|
|
|
|
|
14-3502.
|
|
|
|
|
|
|
|
(A) IN THIS SECTION, "CUSTOMER" MEANS AN INDIVIDUAL RESIDING IN
THE STATE WHO PROVIDES PERSONAL INFORMATION TO A BUSINESS FOR THE
PURPOSE OF PURCHASING OR LEASING A PRODUCT OR OBTAINING A SERVICE
FROM THE BUSINESS.
(B) WHEN A BUSINESS IS DESTROYING A CUSTOMER'S RECORDS THAT
CONTAIN PERSONAL INFORMATION OF THE CUSTOMER, THE BUSINESS SHALL
TAKE REASONABLE STEPS TO PROTECT AGAINST UNAUTHORIZED ACCESS TO OR
USE OF THE PERSONAL INFORMATION, TAKING INTO ACCOUNT:
|
|
|
|
|
|
|
|
(1)
(2)
OPERATIONS;
(3)
METHODS; AND
(4)
|
|
|
|
|
THE SENSITIVITY OF THE RECORDS;
THE NATURE AND SIZE OF THE BUSINESS AND ITS
THE COSTS AND BENEFITS OF DIFFERENT DESTRUCTION
AVAILABLE TECHNOLOGY.
|
|
|
|
|
|
|
|
|
|
|
14-3503.
|
|
|
|
|
|
|
|
(A) TO PROTECT PERSONAL INFORMATION FROM UNAUTHORIZED
ACCESS, USE, MODIFICATION, OR DISCLOSURE, A BUSINESS THAT OWNS OR
LICENSES PERSONAL INFORMATION OF AN INDIVIDUAL RESIDING IN THE STATE
SHALL IMPLEMENT AND MAINTAIN REASONABLE SECURITY PROCEDURES AND
|
|
|
|
|
|
|
|
- 3466 -
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|