Enrolled Bill Summary

Senate Bill 475	Senate Author:  Nelson et al.
Effective:  See below	House Sponsor:  Capriglione

            Senate Bill 475 amends the Government Code to implement certain recommendations from the Texas Cybersecurity Council and the Texas Privacy Protection Advisory Council aimed at further improving cybersecurity standards and data management practices for state agencies and local governments. Among other provisions, the bill does the following:

·       provides for the appointment of a data management advisory committee;

·       requires each state agency with more than 150 full‑time employees to designate a full­‑time employee of the agency to serve as a data management officer and provides for the implementation of best practices for managing and securing data;

·       provides for the establishment of a cloud computing state risk and authorization management program;

·       provides for the establishment of a volunteer cybersecurity incident response team;

·       provides for the establishment of regional network security centers; and

·       prohibits state agencies from acquiring, retaining, or disseminating data used to identify an individual or the individual's location without written or electronic consent.

The bill's provisions take effect June 14, 2021, except that the aforementioned prohibition applies to state agencies effective September 1, 2021.