Illinois Personal Information Protection Act

Illinois HB 1633 of 2006 requires data collectors to provide notification of a security breach after discovery, even if data has not been accessed by unauthorized persons. This state law affects all data collectors that own or license personal information (PI), or maintains computerized data that includes PI. The policy detects combinations of Personally Identifiable Information (PII) like social security, credit card, state ID, and driver’s license numbers. Additional rules detect passwords. The rules for this policy are:

• Illinois Personal Information Protection Act: SSN with CCN
• Illinois Personal Information Protection Act: CCN with Illinois Driver License
• Illinois Personal Information Protection Act: CCN with Illinois State ID
• Illinois Personal Information Protection Act: Password Dissemination for HTTP Traffic (Wide)
• Illinois Personal Information Protection Act: Password Dissemination for HTTP Traffic (Default)
• Illinois Personal Information Protection Act: Password Dissemination for HTTP Traffic (Narrow)
• Illinois Personal Information Protection Act: Password Dissemination for non- HTTP/S Traffic (Wide)
• Illinois Personal Information Protection Act: Password Dissemination for non- HTTP/S Traffic (Default)
• Illinois Personal Information Protection Act: Password Dissemination for non- HTTP/S Traffic (Narrow)