SACRAMENTO, Calif. (AP) — Legislation headed to the governor's desk requires businesses to help protect consumers against identity theft after data breaches.
The state Assembly on Monday gave AB1710 final approval on a 47-24 vote.
Democratic Assemblymen Bob Wieckowski of Fremont and Roger Dickinson of Sacramento introduced the bill in response to the millions of Californians affected by data breaches, including at Target.
The original legislation was tougher on businesses by setting data-protection standards and holding them liable if they did not comply. The lawmakers dropped those provisions after strong opposition from retailers.
AB1710 requires businesses to provide free credit monitoring services for one year after Social Security and drivers' license numbers are exposed. It also prohibits the sale of Social Security numbers except when doing so is part of a larger transaction.