Current with legislation from the 2023 Regular and Special Sessions signed by the Governor as of November 21, 2023.
Section 521.052 - Business Duty to Protect Sensitive Personal Information(a) A business shall implement and maintain reasonable procedures, including taking any appropriate corrective action, to protect from unlawful use or disclosure any sensitive personal information collected or maintained by the business in the regular course of business.(b) A business shall destroy or arrange for the destruction of customer records containing sensitive personal information within the business's custody or control that are not to be retained by the business by: (3) otherwise modifying the sensitive personal information in the records to make the information unreadable or indecipherable through any means.(c) This section does not apply to a financial institution as defined by 15 U.S.C. Section 6809.(d) As used in this section, "business" includes a nonprofit athletic or sports association.Tex. Bus. and Comm. Code § 521.052
Amended By Acts 2009, 81st Leg., R.S., Ch. 419, Sec. 2, eff. 9/1/2009.Added by Acts 2007, 80th Leg., R.S., Ch. 885, Sec. 2.01, eff. 4/1/2009.