N.J.S.A. 56:8-197 — Restrictions for health insurance carrier relative to certain computerized records.

56:8-197 Restrictions for health insurance carrier relative to certain computerized records. 2. a. A health insurance carrier shall not compile or maintain computerized records that include personal information, unless that information is secured by encryption or by any other method or technology rendering the information unreadable, undecipherable, or otherwise unusable by an unauthorized person. Compliance with this section shall require more than the use of a password protection computer program, if that program only prevents general unauthorized access to the personal information, but does not render the information itself unreadable, undecipherable, or otherwise unusable by an unauthorized person operating, altering, deleting, or bypassing the password protection computer program. b. This section shall only apply to end user computer systems and computerized records transmitted across public networks. L.2014, c.88, s.2.

This is the verbatim text of N.J.S.A. 56:8-197, retrieved from the New Jersey Legislature's public statute corpus. Statutes are amended periodically — for the most current version, check the external source link above. Kyzer is not a law firm and this page is not legal advice.