Sec. 5. As used in this chapter, “cybersecurity event” means an event resulting in unauthorized access to or a disruption or misuse of an information system or nonpublic information stored on the information system that has a reasonable likelihood of materially harming a consumer or any material part of the normal operations of the licensee. However, the term does not include the following:

(1) The unauthorized acquisition of encrypted nonpublic information if the encryption, process, or key is not also acquired, released, or used without authorization.

lawyer at desk

Ask an insurance law question, get an answer ASAP!
Click here to chat with a lawyer about your rights.

Terms Used In Indiana Code 27-2-27-5

  • consumer: means a resident of Indiana whose nonpublic information is in a licensee's possession, custody, or control. See Indiana Code 27-2-27-4
  • encrypted: means the transformation of data into a form that results in a low probability of assigning meaning without the use of a protective process or key. See Indiana Code 27-2-27-7
  • information system: means either of the following:

    Indiana Code 27-2-27-9

  • licensee: means a person that is:

    Indiana Code 27-2-27-10

  • nonpublic information: means electronic information that is not publicly available information and is described in either of the following subdivisions:

    Indiana Code 27-2-27-12

(2) An event in which a licensee has determined that the nonpublic information accessed by an unauthorized person has not been used or released and has been returned or destroyed.

As added by P.L.130-2020, SEC.10.

  Previous section
Next section  
 Chapter 27 Contents