Florida cybersecurity safe harbor bill advances>
Healthcare IT News – Andrea Fox
The Florida House of Representatives’ Commerce Committee referred the Cybersecurity Incident Liability Act (H.B 473) to the State Administration & Technology Appropriations Subcommittee, following its introduction in November.
The legislation aims to provide safe harbor to entities that acquire, manage, and use personal information for cyber incident liability.
These entities can gain presumption against liability by substantially aligning with specific cybersecurity frameworks and standards, such as NIST publications, the Federal Risk and Authorization Management Program, the Center for Internet Security Critical and others.
The legislation responds to the increasing prevalence of cyberattacks in Florida, including a ransomware attack on Tampa General and a data breach affecting 11 million people affiliated with care at HCA Healthcare hospitals.
This legislative move aligns Florida with other states such as Ohio, Utah, and Connecticut, which have proposed or enacted similar data liability protection laws.
These laws aim to provide an affirmative defense for businesses facing data breach claims by demonstrating the implementation of reasonable security measures at the time of the breach.
Link: https://www.healthcareitnews.com/news/florida-cybersecurity-safe-harbor-bill-advances