The bill, HB 195-FN, introduces Chapter 507-I to existing law, establishing comprehensive protections for personal information. It defines key terms such as "personal information," "government entity," and "third-party providers of information and services." The legislation asserts that individuals have a reasonable expectation of privacy regarding their personal data held by third parties, which cannot be disclosed without explicit consent, except in emergencies or as legally required. It mandates that consent requests must be clear and require affirmative action from individuals to opt-in. Additionally, the bill allows for the disclosure of personal information to government entities under specific conditions, ensuring individuals are notified of such requests unless prohibited by law.
The bill also includes provisions for penalties against violations, empowering the attorney general to take civil action against offenders, and specifies that no waivers of these protections can be required as a condition of service. It amends existing law concerning biometric data to incorporate references to the new chapter, ensuring a comprehensive approach to personal information protections. The fiscal impact of the bill is indeterminable for state and local governments, potentially affecting expenditures related to the judicial and correctional systems, while not projecting any revenue changes. The act is set to take effect on January 1, 2026.
Statutes affected:
Introduced: 359-N:2