The Law Offices of Mary N. Chaney, P.L.L.C.
The Cyber Security Law Firm of Texas

Mary's Blog

The Breach Whisperer

About Mary....

Mary N. Chaney, Esq., CISSP, CIPP/US is a former Special Agent for the FBI where she investigated cybercrime, a seasoned corporate executive that built and operated information security teams and now a cybersecurity attorney.

As a self-described “Breach Whisperer” our firm can train your company to properly prepare for your eventual breach!

The overall goal of our firm is to use our wealth of knowledge and expertise to help support, translate and advise, Boards of Directors, CIO's, CISO's and General Counsel's on how to legally protect their company from cyber related risk.

Blog Entries


Texas Passes Multiple Bills Related to Cyber Security and Privacy

See Article Here

The list of states that are introducing bills that pertain to cyber security and privacy keeps growing. Texas is no exception as there are several bills set to take effect on September 1, 2019. It is my understanding that all the bills are sitting on the governor’s desk waiting to be signed in the next week or so. 

HB 4390 - Establishes the Texas Privacy Protection Advisory Council that will study privacy laws in Texas, nationally and internationally. The bill establishes the council but does not require any action for businesses yet. This bill also updates the data breach notification statute to require notification within 60 days and also notification to be given to the state attorney general if the breach involved 250 or more Texas residents. 

SB 936 - Requires the Public Utility Commission (PUC) and the Electric Reliability Council of Texas (ERCOT) to contract with an entity to act as the PUC’s cybersecurity monitor.

SB 475 - Establishes the “Texas Electric Grid Security Council as an advisory body to facilitate the development and dissemination of best security practices for the electric industry”.

SB 64 - Which revises the cybersecurity requirements for state agencies. As well as incentivizes the development of cybersecurity degree programs at the public junior college, public state college, and public technical institutes. 

As I read the article, and the bills associated with them, it reiterated to me the necessity to incorporate cyber security and privacy in just about every facet of our lives. Enacting legislation and eventual enforcement will take time, but states are continuing to act where they see vulnerabilities, and this will only help us in the long run as we try to build more comprehensive federal laws.