Kansas protection of consumer information

Kansas SB 196 requires that a person that conducts business in this state, or a government, governmental subdivision, or agency that owns or licenses computerized data that includes personal information shall, when it becomes aware of any breach of the security of the system, conduct in good faith a reasonable and prompt investigation to determine the likelihood that personal information has been or will be misused. If the investigation determines that the misuse of information has occurred or is reasonably likely to occur, the person or government, governmental subdivision, or agency shall give notice as soon as possible to the affected Kansas resident. The policy detects combinations of Personally Identifiable Information (PII) like social security, credit card, and driver’s license numbers. The rules for this policy are:

• Kansas Protection of Consumer Information: Name and SSN
• Kansas Protection of Consumer Information: Name and DL
• Kansas Protection of Consumer Information: Name and CCN
• Kansas Protection of Consumer Information: Name and Password (Wide)
• Kansas Protection of Consumer Information: Name and Password (Default)
• Kansas Protection of Consumer Information: Name and Password (Narrow)
• Kansas Protection of Consumer Information: Password Dissemination for HTTP Traffic (Wide)
• Kansas Protection of Consumer Information: Password Dissemination for HTTP Traffic (Default)
• Kansas Protection of Consumer Information: Password Dissemination for HTTP Traffic (Narrow)
• Kansas Protection of Consumer Information: Account and Password