Businesses in Hawaii must take reasonable steps to protect their data and information security. This includes requiring strong passwords, security questions, two-step authentication, and access codes. Our suite of managed security services is designed to help companies protect their data and comply with regulations. Chapter 487R of the Hawaii Revised Statutes requires companies or government agencies doing business in Hawaii or holding personal information of Hawaii residents to take reasonable steps to protect against unauthorized access or use of the information.
Companies must also notify the owner or licensee of the information immediately after discovering a security breach. Hawaii has not formally recognized other types of common law claims for invasion of privacy, such as false light, publication of private facts, and intrusion into isolation. However, several Hawaii appellate decisions have articulated the elements of such demands. The law applies to any company that holds or licenses personal information of Hawaii residents, to any company that does business in Hawaii that holds or licenses personal information in any form, or to any government agency that collects personal information for specific purposes for government purposes. The good-faith acquisition of personal information by a company employee or agent for a legitimate purpose does not constitute a breach of security, provided that the personal information is not used for a purpose other than the company's legitimate purpose and is not subject to any other unauthorized disclosure. Data protection and information security are essential for businesses operating in Hawaii.
Companies must take reasonable steps to protect their data and comply with regulations set forth by Chapter 487R of the Hawaii Revised Statutes. This includes implementing strong passwords, security questions, two-step authentication, and access codes. Additionally, companies must notify the owner or licensee of the information immediately after discovering a security breach. Hawaii has not formally recognized other types of common law claims for invasion of privacy. Companies must ensure that personal information is only used for legitimate purposes and is not subject to any other unauthorized disclosure. Businesses in Hawaii must take data protection and information security seriously.
Companies should consider investing in managed security services to ensure they are compliant with regulations and protect their data from unauthorized access or use.
Leave a Comment