The proposed bill, titled the "Prohibited Applications on Government-Issued Devices Act," aims to enhance cybersecurity measures for public employers by prohibiting the use of certain applications on government-issued devices. It mandates that public employers block access to these prohibited applications on their networks and restrict their use on devices issued to employees or officers. The bill defines "prohibited applications" as those created or maintained by foreign entities that pose security risks, such as data collection, cyber-espionage, or misinformation campaigns. Additionally, it allows for exceptions where law enforcement officers may need to use these applications for public safety or investigations, provided they request a waiver from the Department of Technology, Management, and Budget.

The bill also requires the department to compile and maintain a list of prohibited applications, which must be updated quarterly and communicated to public employers. Employees and officers are obligated to uninstall any applications from their government-issued devices that appear on this list within 15 days of its publication. The act is set to take effect on December 31, 2025, and the department is tasked with promulgating rules to implement the provisions outlined in the bill.