Home Table of Contents

§ 10-1304. Security procedures and practices required to protect personal information

West's Annotated Code of MarylandState GovernmentEffective: July 1, 2014

West's Annotated Code of Maryland
State Government (Refs & Annos)
Title 10. Governmental Procedures (Refs & Annos)
Subtitle 13. Protection of Information by Government Agencies (Refs & Annos)
Effective: July 1, 2014
MD Code, State Government, § 10-1304
§ 10-1304. Security procedures and practices required to protect personal information
In general
(a) To protect personal information from unauthorized access, use, modification, or disclosure, a unit that collects personal information of an individual shall implement and maintain reasonable security procedures and practices that are appropriate to the nature of the personal information collected and the nature of the unit and its operations.
Written contracts or agreements entered on or after July 1, 2014
(b)(1) This subsection shall apply to a written contract or agreement that is entered into on or after July 1, 2014.
(2) A unit that uses a nonaffiliated third party as a service provider to perform services for the unit and discloses personal information about an individual under a written contract or agreement with the third party shall require by written contract or agreement that the third party implement and maintain reasonable security procedures and practices that:
(i) are appropriate to the nature of the personal information disclosed to the nonaffiliated third party; and
(ii) are reasonably designed to help protect the personal information from unauthorized access, use, modification, disclosure, or destruction.

Credits

Added by Acts 2013, c. 304, § 1, eff. July 1, 2014.
MD Code, State Government, § 10-1304, MD STATE GOVT § 10-1304
Current with all legislation from the 2021 Regular Session of the General Assembly. Some statute sections may be more current, see credits for details.
End of Document