HI SCR31

Requests the State Auditor to conduct a comprehensive study on whether recommendations from the 2007 Hawaii Identity Theft Task Force Report and Act 10, Session Laws of Hawaii 2008 have been implemented and their effectiveness.

Directs the Auditor to analyze four proposed remedial measures for persons affected by information breaches: requiring independent audits by organizations responsible for breaches, establishing an agency to track Hawaii identity theft trends, creating a centralized trust account funded by fees on liable organizations, and applying Hawaii's Uniform Deceptive Trade Practices Act to state agencies providing commercial-type services.

Requires the Information Privacy and Security Council to cooperate with and assist the Auditor upon request.

Mandates the Auditor submit findings, recommendations, and any proposed legislation to the Legislature no later than twenty days before the 2012 Regular Session convenes.