Bill > S7024

This bill enacts changes to Florida's public records and open meetings laws to protect sensitive cybersecurity information held by government agencies. It creates exemptions from public disclosure for various types of information, including network schematics, hardware and software configurations, encryption details, information about how cybersecurity incidents are detected and responded to, processes and practices designed to protect data and technology, risk assessments and audits of cybersecurity programs, login credentials (which are passwords or other information used to access systems), internet protocol addresses and geolocation data related to accessing public portals, and sensitive agency-produced data processing software. The bill also exempts insurance and self-insurance coverage limits for cybersecurity from public view. Importantly, any portion of a public meeting that would reveal this protected cybersecurity information will also be exempt from public access, though these portions must still be recorded and transcribed, with those recordings and transcripts also being kept confidential. These exemptions are retroactive and will be subject to future legislative review, with a sunset date of October 2, 2031. The bill also makes conforming changes to various other statutes and repeals existing provisions related to data security in the Citizens Property Insurance Corporation and state postsecondary education institutions.

Governmental Oversight and Accountability (Senate)

https://www.flsenate.gov/Session/Bill/2026/7024