Maryland Data Disposal
MD. Commercial Law Code Ann. § 14-3502
Commercial Law
Title 14 - Miscellaneous Consumer Protection Provisions
Subtitle 35 - Maryland Personal Information Protection Act
Section 14-3502 - Protection Against Unauthorized Access or Use
(a) In this section, “customer” means an individual residing in the State who provides personal information to a business for the purpose of purchasing or leasing a product or obtaining a service from the business.
(b) When a business is destroying a customer’s, an employee’s, or a former employee’s records that contain personal information of the customer, employee, or former employee, the business shall take reasonable steps to protect against unauthorized access to or use of the personal information, taking into account:
(1) The sensitivity of the records;
(2) The nature and size of the business and its operations;
(3) The costs and benefits of different destruction methods; and
(4) Available technology.
For more information, see here: https://mgaleg.maryland.gov/mgawebsite/Laws/StatuteText?article=gcl§ion=14-3502&enactments=false
These materials were obtained directly from the State Legislative websites and are posted here for your review and reference only. No Claim to Original State Government Works. This may not be the most recent version. The State may have more current information. We make no guarantees or warranties about the accuracy or completeness of this information, or the information linked to. Please check the linked sources directly.