AR HB1369

Requires all public entities funded by taxpayer funds to create a technology resources policy defining authorized use and a cyber security policy based on State Cyber Security Office standards.

Mandates all public entities develop training programs for employees on technology resources and cyber security policies, except political subdivisions are exempt from cyber security training requirements.

Prohibits use of public entity technology resources for expressing personal political opinions to elected officials (unless within job duties or requested), lobbying without being a registered lobbyist, illegal activities, or intentionally overriding security procedures.

Requires state entities to submit cyber security policies to the State Cyber Security Office by October 1 of each even-numbered year for approval; Department of Education must develop policies for state educational institutions.

Exempts cyber security policies from public disclosure under the Freedom of Information Act and exempts disciplinary procedures from applying to employee communications protected under the Public Employees' Political Freedom Act or Arkansas Whistle-Blower Act.