SB-1386 Compliance
SB-1386 Compliance
The Overview
SB 1386 is popularly known as the California Breach Security Information Act. The state of California has created this legal requirement where organizations are mandated to disclose information about any security breaches involving unauthorized disclosure of stored unencrypted personal information of California residents. The law motivates an organization to adopt a strong posture on information security considering the reputational and financial backlash it would face after a mandatory disclosure of a security breach. Personal information, according to the standard can be defined as the individual’s first name or first initial and last name, in combination with one or more of the following, Social Security number, California state Identification number, account number, or credit/debit card information, passwords, PINS or access codes.
It applies to anyone doing business with anyone who is a California resident. If you have employees or customers in California, even a single one, it applies to you. If you are an outsourcing company that has a customer who has employees or customers who are California residents, then it applies to you. If you store data for entities that have information of California residents, then it applies. Large and small does not make a difference. It applies all the same.
why we45?
The SB-1386 is an extremely stringent law requiring entities to mandatorily disclose a data breach involving information of California residents. The law motivates an organization to implement stringent security measures to ensure that data breaches do not happen. we45 can provide comprehensive consulting and implementation expertise to ensure that sensitive data of this nature is protected while being used by your employees or partners. We will delve deep into security practices and implementations to ensure that your organization is not subject to embarrassing data breaches of this nature.