US State Information Security Laws

US State Data Protection / Cybersecurity Laws

State-level data protection laws are becoming more common in the United States. These states have laws that govern minimum cybersecurity requirements:

California	Massachusetts	Minnesota	Nevada	Oregon	Washington

CA SB1386	MA 201CMR17.00	Plastic Card Security Act	NV SB227	OR ORS646.200	WA HB1149

Why should you take these state-level Information Security laws seriously? The reason is simple: A single negligent breach can close your business forever, because liability insurance will not cover professional negligence. Without the ability to prove steps were taken to ensure due care and due diligence were applied to your business operations, you may be considered negligent in a lawsuit. Additionally, Information Security policies are a tool that you can use to enforce proper conduct by your employees.

US State Data Protection / Cybersecurity Laws

Find Out Exclusive Information On Cybersecurity

When is a conformity assessment not a conformity assessment? (hint – it is CMMC)

Is CMMC really a "maturity model" or just a controls catalog with 5 control sets?

Is “Dumpster Fire” too strong a word to describe CMMC compliance concerns with many MSPs?

CMMC Mind Map - Identifying Stakeholders & Requirements

Visit our FAQs

Customer Service

Why Cybersecurity

Blog