Vermont Enacts Additional Data Privacy and Consumer Protection Provisions

Weiner Brodsky Kider PC
Contact

Weiner Brodsky Kider PC

Vermont recently signed into law legislation (Senate Bill 110) to address a number of issues related to data privacy and consumer protection – such as expanding the definition of personally identifiable information (PII) for purposes of data breach notification requirements for data collectors – effective July 1, 2020.

Under the Vermont Security Breach Notice Act, data collectors are required, in certain instances, to report data breaches of PII.  The recent legislation expands the definition of PII, including elements such as additional identification numbers (e.g., individual taxpayer identification number, passport number, etc.), certain unique biometric data used for identification or authentication purposes, genetic information, and certain health information.  Moreover, the recent legislation expands the definition of, and notices required in connection with, a security breach to address login credentials (i.e., a consumer’s user name or e-mail address, in combination with a password or an answer to a security question, that together permit access to an online account) in addition to PII.  Additional changes, including those related to options for substitute notice and the addition of login credentials to these provisions, were made to various other sections of the Vermont Security Breach Notice Act as well.

The recent legislation also generally adds state statutes that require the state to conduct a data privacy audit in which it analyzes consumer information it collects and uses, protect student online privacy, and impose communication requirements on sellers or lessors of certain types of consumer contracts.

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Weiner Brodsky Kider PC | Attorney Advertising

Written by:

Weiner Brodsky Kider PC
Contact
more
less

Weiner Brodsky Kider PC on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide

This website uses cookies to improve user experience, track anonymous site usage, store authorization tokens and permit sharing on social media networks. By continuing to browse this website you accept the use of cookies. Click here to read more about how we use cookies.