The proposed bill seeks to strengthen cybersecurity and consumer data protection in West Virginia by introducing two new articles: the Safe Harbor for Cybersecurity Programs and the Consumer Data Protection Act. It provides businesses with an affirmative legal defense against punitive damages in data breach lawsuits, contingent upon maintaining a written cybersecurity program that includes specific safeguards for personal information. The bill also offers immunity to higher education institutions that assist businesses with cybersecurity assessments. Additionally, it clarifies that no private cause of action is available under this article, thereby limiting legal recourse for individuals in certain situations.
The Consumer Data Protection Act establishes a comprehensive framework for managing consumer data, defining the roles and responsibilities of data controllers and processors while granting consumers rights to access, correct, delete, and opt out of data processing for targeted advertising. The bill outlines the conditions for compliance, exemptions for certain entities, and the exclusive enforcement authority of the Attorney General, who can impose civil penalties for violations. It mandates that controllers respond to consumer requests within specified timeframes and conduct data protection assessments for specific processing activities. Overall, the legislation aims to enhance consumer privacy rights and create a consistent regulatory environment for data handling practices in the state, with an effective date set for July 1, 2026.
Statutes affected: Introduced Version: 31A-8H-1, 31A-8H-2, 31A-8H-3, 31A-8H-4, 31A-8H-5, 46A-6O-1, 46A-6O-2, 46A-6O-3, 46A-6O-4, 46A-6O-5, 46A-6O-6, 46A-6O-7, 46A-6O-8, 46A-6O-9, 46A-6O-10, 46A-6O-11, 46A-6O-12, 46A-6O-13
Committee Substitute: 31A-8H-1, 31A-8H-2, 31A-8H-3, 31A-8H-4, 31A-8H-5, 46A-6O-1, 46A-6O-2, 46A-6O-3, 46A-6O-4, 46A-6O-5, 46A-6O-6, 46A-6O-7, 46A-6O-8, 46A-6O-9, 46A-6O-10, 46A-6O-11
Engrossed Committee Substitute: 31A-8H-1, 31A-8H-2, 31A-8H-3, 31A-8H-4, 31A-8H-5, 46A-6O-1, 46A-6O-2, 46A-6O-3, 46A-6O-4, 46A-6O-5, 46A-6O-6, 46A-6O-7, 46A-6O-8, 46A-6O-9, 46A-6O-10, 46A-6O-11