Bill > HB3936

This bill amends Oregon state law to enhance the security of state information technology assets by expanding definitions and strengthening restrictions on certain technology vendors. The bill introduces a comprehensive definition of "artificial intelligence" and broadens the definition of "covered product" to include not just hardware and software from specific vendors, but also any technology using AI developed or owned by those vendors. The covered vendors list includes several international technology companies such as Huawei, ByteDance, Tencent, and Kaspersky Lab, with provisions allowing the State Chief Information Officer to designate additional vendors. The legislation requires state agencies, the Secretary of State, and the State Treasurer to prohibit, remove, and prevent the installation, download, use, or access of covered products on state information technology assets, with limited exceptions for investigatory, regulatory, or law enforcement purposes. The bill empowers the State Chief Information Officer to establish rules for defining and identifying national security threats, create policies for implementing these restrictions, and provide notification procedures when a corporate entity is designated as a covered vendor. This legislation aims to protect state technological infrastructure from potential security risks associated with specific international technology companies.

Business and Industry

https://olis.oregonlegislature.gov/liz/2025R1/Measures/Overview/HB3936