Rep. Bob Morgan

Filed: 3/20/2023

 

 

 

10300HB2130ham001 LRB103 04780 BMS 59481 a
1		AMENDMENT TO HOUSE BILL 2130
2		AMENDMENT NO. ______. Amend House Bill 2130 on page 15,
3		line 5, after "Code", by inserting ", and the cybersecurity
4		event has a reasonable likelihood of materially harming any
5		consumer residing in this State or any material part of the
6		normal operations of the licensee"; and
7		by replacing line 21 on page 22 through line 4 on page 23 with
8		the following:
9		"(2) A licensee that is subject to, governed by, and
10		compliant with the privacy, security, and breach
11		notification rules issued by the United States Department
12		of Health and Human Services, Parts 160 and 164 of Title 45
13		of the Code of Federal Regulations, established pursuant
14		to the Health Insurance Portability and Accountability Act
15		of 1996, Public Law 104-191, and the Health Information
16		Technology for Economic and Clinical Health Act, Public
17		Law 111-5, HITECH, and that maintains nonpublic

10300HB2130ham001 - 2 - LRB103 04780 BMS 59481 a
1		information in the same manner as protected health
2		information pursuant to an information security program
3		shall be considered to meet the requirements of Section 10
4		and Section 15 of this Act. To claim this exemption, the
5		licensee must submit an annual statement by April 15
6		certifying its compliance with the applicable provisions
7		of federal law referenced in this paragraph".