NJ A5915

Bill

NJ A5915

Requires certain persons and business entities to maintain comprehensive information security program.

Introduced
06/21/2021

In Committee
06/21/2021

Crossed Over

Passed

Dead
01/11/2022

Introduced Session

2020-2021 Regular Session

Bill Summary

This bill requires any person, corporation, association, partnership or other legal entity that owns or licenses personal information about a resident of this State to develop, implement, and maintain a comprehensive information security program that is written in one or more readily accessible parts and contains administrative, technical, and physical safeguards that are necessary to protect the personal information. The bill provides that it would be an unlawful practice under the consumer fraud act, P.L.1960, c.39 (C.56:8-1 et seq.), to willfully, knowingly or recklessly violate the provisions of the bill. An unlawful practice is punishable by a monetary penalty of not more than $10,000 for a first offense and not more than $20,000 for any subsequent offense. Additionally, a violation can result in cease and desist orders issued by the Attorney General, the assessment of punitive damages, and the awarding of treble damages and costs to those injured as a result of the violation.

AI Summary

This bill requires any person, corporation, association, partnership, or other legal entity that owns or licenses personal information about a New Jersey resident to develop, implement, and maintain a comprehensive information security program. The program must contain administrative, technical, and physical safeguards to protect the personal information, such as designating employees to maintain the program, assessing risks, and implementing security measures like encryption and access controls. The bill also establishes that willfully, knowingly, or recklessly violating the provisions of the bill is an unlawful practice under the Consumer Fraud Act, which can result in monetary penalties, cease and desist orders, and other remedies.

Committee Categories

Business and Industry

Sponsors (2)

Raj Mukherji (D)*, Annette Quijano (D)*,

Last Action

Introduced, Referred to Assembly Financial Institutions and Insurance Committee (on 06/21/2021)

Official Document

https://www.njleg.state.nj.us/bill-search/2020/A5915

(3 Companion Bills)

Version:

Document Type	Source Location
State Bill Page	https://www.njleg.state.nj.us/bill-search/2020/A5915
BillText	https://www.njleg.state.nj.us/Bills/2020/A9999/5915_I1.HTM
Bill	https://www.njleg.state.nj.us/Bills/2020/A9999/5915_I1.PDF
BillText	https://www.njleg.state.nj.us/2020/Bills/A9999/5915_I1.HTM
Bill	https://www.njleg.state.nj.us/2020/Bills/A9999/5915_I1.PDF

Bill	Bill Name	Last Action	Type
A1766	Requires certain persons and business entities to maintain comprehensive information security program.	Introduced, Referred to Assembly Homeland Security and State Preparedness Committee	Carry Over
S1233	Requires certain persons and business entities to maintain comprehensive information security program.	Received in the Assembly, Referred to Assembly Financial Institutions and Insurance Committee	Same As
S2692	Requires certain persons and business entities to maintain comprehensive information security program.	Introduced in the Senate, Referred to Senate Law and Public Safety Committee	Carry Over

Bill > A5915

summary

Introduced Session

Bill Summary

AI Summary

Committee Categories

Sponsors (2)

Last Action

Official Document

bill text

bill summary

bill summary

bill summary