HI SB1162

Requires government agencies maintaining personal information systems to implement mandatory training programs for personnel with access to or disclosing personal information, with assistance available from the information and communication services division.

Mandates government agencies to submit written reports to the legislature and information privacy and security council within twenty days of discovering a security breach, detailing breach nature, number of affected individuals, notice copies, and prevention procedures.

Establishes the information privacy and security council as responsible for coordinating implementation of data security guidelines across government agencies, with the comptroller or state chief information officer serving as chair.

Authorizes the comptroller to establish support positions including legal, IT, human resources, records management, and training staff within the information and communication services division.

Appropriates unspecified funds for fiscal years 2011-2012 and 2012-2013 to support the council, specialized security personnel, and security tools including software and enhanced web applications.