Abstract
This article represents a comprehensive review of California Senate Bill 1386 (SB1386) and its implications to businesses from both a legal and information security perspective. Technical requirements to comply with this legislation are set forth, including numerous proactive steps that can be taken by an organization to avoid the significant ramifications of noncompliance. This consumer protection legislation is precedent setting and not limited to California, as evidenced by the recent bill introduced in the U.S. Senate by Senator Diane Feinstein (DCA). SB1386 may become the benchmark for customer privacy information protection for the entire United States.