Bill > HB1314

This bill creates a new chapter in the North Dakota Century Code that establishes cybersecurity incident reporting requirements for executive branch state agencies and political subdivisions within the state. The bill defines key terms like "breach," "malware," "personal information," and "regulated information." It requires entities to immediately disclose identified or suspected cybersecurity incidents to the state's Information Technology Department, including details on the type of records potentially exposed, mitigation efforts, and expected impacts. The Legislative and Judicial branches may also disclose cybersecurity incidents. The Department is tasked with providing consultation and resources to assist entities in responding to and remediating these incidents, and must report all disclosed incidents to the Legislative Management.

Business and Industry

https://www.legis.nd.gov/assembly/67-2021/bill-actions/ba1314.html