On March 20, the North Dakota governor signed SB 2262, which, among other things, amends the state’s law covering the unauthorized use of personal identifying information (PII). Specifically, the bill expands the definition of PII to include, (i) an individual’s payment card information; (ii) an individual’s biometric data; and (iii) any other information that can be used to access a person's financial records. Under the bill, an individual is guilty of an offense if the individual “obtains or attempts to obtain, transfers, records, or uses or attempts to use” any PII of another individual, living or deceased, to obtain anything of value without consent of the other individual. The bill is effective August 1.
- How-to guide How-to guide: How to develop, implement, and maintain a US privacy law compliance program (USA) Recently updated
- Checklist Checklist: Responding to a data breach (USA) Recently updated
- How-to guide How-to guide: How to implement privacy by design within your organization (USA)