Compendium Of State Privacy And Security Legislation
Compendium of State Privacyand Security Legislation1994 Overview
U.S. Department of JusticeBureau of Justice StatisticsJan M. Chaiken, Ph.D.DirectorAcknowledgments. This report was prepared by SEARCH, TheNational Consortium for Justice Information and Statistics, Francis J.Carney Jr., Chairman, and Gary R. Cooper, Executive Director. Theproject director was Sheila J. Barton, Director, Law and Policy Program.Paul L. Woodard, Senior Counsel, and Amir Holmes, Legal Intern,prepared the report. Twyla R. Cunningham, Manager, CorporateCommunications, edited the report. Jane L. Bassett, Publishing Assistant,and Terri E. Nyberg, Executive Secretary, provided layout and designassistance. The project was conducted under the direction of Carol G.Kaplan, Assistant Deputy Director, Bureau of Justice Statistics.Report of work performed under BJS Cooperative Agreement No. 92-BJCX-K012 awarded to SEARCH Group, Incorporated, 7311 GreenhavenDrive, Suite 145, Sacramento, California 95831. Contents of thisdocument do not necessarily reflect the views or policies of the Bureau ofJustice Statistics or the U.S. Department of Justice.Copyright SEARCH Group, Incorporated dba SEARCH, The NationalConsortium for Justice Information and Statistics, 1994The U.S. Department of Justice authorizes any person to reproduce,publish, translate or otherwise use all or any part of the copyrightedmaterial in the publication with the exception of those items indicatingthat they are copyrighted by or reprinted by permission of any sourceother than SEARCH, The National Consortium for Justice Informationand Statistics.i
TABLE OF CONTENTSIntroduction .1Section 1: Review and analysis .4A. Current status of the law .4B. Analysis of critical issues.41.Data quality .42.Access to criminal history recordsfor noncriminal justice purposes .7Section 2: Classification category definitions .12Section 3: Summary tables of statutes and regulations byclassification category.14A. Survey comparison of changes in statestatutes and regulations by classification category .14B. Summary of state statutes and regulations byclassification category.161.State regulatory authority.172.Privacy and security council .183.Dissemination regulations.194.Inspection .205.Right to challenge .216.Judicial review of challenged information.227.Purging nonconviction information .238.Purging conviction information .249.Sealing nonconviction information.2510.Sealing conviction information.2611.Removal of disqualifications .2712.Right to state nonexistence of record.2813.Research access.2914.Accuracy and completeness .3015.Dedication .3116.Civil remedies .3217.Criminal penalties .3318.Public records.3419.Separation of files .3520.Regulation of intelligence collection .3621.Regulation of intelligence dissemination.3722.Security .3823.Transaction logs .3924.Training employees.4025.Listing of information systems .4126.FOIA (including CJI) .4227.FOIA (excluding CJI) .4328.Central state repository .44ii
Section 4:Summary tables of statutes andregulations by state.45State code titles .47Alabama .48Alaska.50Arizona.52Arkansas.54California .56Colorado.58Connecticut .60Delaware .62District of Columbia.64Florida .66Georgia.68Hawaii .70Idaho.72Illinois .74Indiana.76Iowa.78Kansas .80Kentucky .82Louisiana.84Maine .86Maryland .88Massachusetts.90Michigan .92Minnesota.94Mississippi .96Missouri .98Montana .100Nebraska.102Nevada .104New Hampshire.106New Jersey .108New Mexico.110New York.112North Carolina.114North Dakota.116Ohio.118Oklahoma .120Oregon.122Pennsylvania .124Puerto Rico.126Rhode Island .128South Carolina.130South Dakota.132Tennessee .134Texas .136Utah.138iii
Vermont .140Virginia .142Virgin Islands.144Washington .146West Virginia .148Wisconsin.150Wyoming.152The full text (approximately 1,500 pages) of legislation cited in thisdocument is available in microfiche from:Justice Statistics ClearinghouseNational Criminal Justice Reference ServiceP.O. Box 6000Rockville, Maryland 20850iv
ForewordThis updated edition of the Compendium of State Privacy and Security Legislation, 1994Overview is the ninth in the series of Bureau of Justice Statistics’ publications referencingand analyzing State laws, administrative regulations, and attorneys generals’ opinionsrelating to the security, confidentiality, accuracy and completeness of criminal historyrecords. The first Compendium was published in 1974 in conjunction with thedevelopment and issuance by the Law Enforcement Assistance Administration of theDepartment of Justice regulations on privacy and security of criminal history recordinformation. Subsequent editions have been published in 1978, 1979, 1981, 1984, 1987,1989, 1992 and now the current 1994 edition.The purpose of the volumes continues to be assistance to legislators, planners,administrators, legal analysts and other researchers in reviewing and contrasting thevarying approaches the States have taken to issues concerned with the maintenance and useof criminal records. With such information available, States are able to take a moreenlightened approach to criminal record policymaking.The importance of complete and accurate records was again highlighted in the lastCongress with the passage of the Brady Handgun Violence Prevention Act and theNational Child Protection Act of 1993 (amended by the Violent Crime Control and LawEnforcement Act of 1994 to include the elderly and disabled). Both Acts address the needto improve the quality of criminal history records and provide grant programs to assist theStates in their efforts.It is the hope of the Bureau of Justice Statistics that this report will be a resource forpolicymakers in improving and promoting the Nation’s criminal history records. Theefficient operation of complete and accurate record systems serves to benefit us all.Jan M. Chaiken, Ph.D.Director
IntroductionThe Compendium seriesThis Compendium is the latest in aseries of nine U.S. Department ofJustice publications that referenceand analyze state laws andregulations relating to privacy andsecurity of criminal history recordinformation. 1 These compendiainclude: (1) compilations of statelaws and administrative regulations,and (2) analyses of findings andtrends reflected in that body of lawand policy documents. The purposeof these compendia is to assistlegislators, planners, administrators,legal analysts and other interestedindividuals in reviewing state statutesand regulations governing themaintenance and use of criminalrecords and in analyzing nationaltrends in this important area.Comparing and contrasting thevarious approaches reflected in themany state laws and regulations citedin these documents should assistplanners and administrators todevelop effective and fair policies fortheir jurisdictions. By facilitatingsuch comparisons and by furtheringresearch in this area, the compendiaare intended to promote the evolutionof enlightened privacy andinformation policy.1The term “criminal history recordinformation” is defined in the Departmentof Justice regulations to include“information collected by criminal justiceagencies on individuals consisting ofidentifiable descriptions and notations ofarrests, detentions, indictments,informations, or other formal criminalcharges, and any disposition arisingtherefrom, sentencing, correctionalsupervision, and release.” 28 C.F.R. §20.3(b) (1993).The first compendium was publishedby the Law Enforcement AssistanceAdministration (LEAA) in 1974 aspart of its efforts connected with thepromulgation of regulations coveringthe privacy and security of criminalhistory record information.2 Asecond compendium, published in1978, documented the growth of stateprivacy and security laws subsequentto the earlier survey.3 At that timeLEAA also published a companiondocument that provided an overviewof the significant changes in statelaws that had occurred, largely as aresult of the impact of the federalregulations, and analyzed policyissues in specific areas of privacy andsecurity law.4 Updating supplementsto those compendia were published in1979 and in 1981, covering statelegislation and regulations up to July1981. 5 The 1984, 1987, 1989 and2U.S. Department of Justice, LawEnforcement Assistance Administration,Office of General Counsel, Compendiumof State Laws Governing the Privacy andSecurity of Criminal Justice Information(Washington, D.C.: Government PrintingOffice, 1974).3U.S. Department of Justice, LawEnforcement Assistance Administration,National Criminal Justice Informationand Statistics Service, Privacy andSecurity of Criminal History Information,Compendium of State Legislation(Washington, D.C.: Government PrintingOffice, January 1978).4U.S. Department of Justice, LawEnforcement Assistance Administration,Privacy and Security of Criminal HistoryInformation: An Analysis of PrivacyIssues (Washington, D.C.: GovernmentPrinting Office, 1978).5U.S. Department of Justice, LawEnforcement Assistance Administration,National Criminal Justice Informationand Statistics Service, Privacy andSecurity of Criminal History Information:Compendium of State Legislation, 1979Supplement, by SEARCH Group, Inc.11992 volumes replaced all of theearlier volumes in the series andreferenced all state laws andregulations up to the dates ofpublication.6Scope of this CompendiumThis Compendium is an up-to-dateand complete document that replacesall of the earlier volumes in theseries. It references all current statelaws up to July 1994, as well asregulations, executive orders andopinions of state attorneys general(Washington, D.C.: Government PrintingOffice, 1979); U.S. Department ofJustice, Bureau of Justice Statistics,Privacy and Security of Criminal HistoryInformation: Compendium of StateLegislation, 1981 Supplement, bySEARCH Group, Inc. (Washington, D.C.:Government Printing Office, 1982).6U.S. Department of Justice, Bureauof Justice Statistics, Privacy and Securityof Criminal History Information:Compendium of State Privacy andSecurity Legislation, 1984 Edition:Overview, by SEARCH Group, Inc.(Washington, D.C., Government PrintingOffice, September 1985); U.S.Department of Justice, Bureau of JusticeStatistics, Privacy and Security ofCriminal History Information:Compendium of State Privacy andSecurity Legislation, 1987 Overview, bySEARCH Group, Inc. (Washington, D.C.:Government Printing Office, August1988); U.S. Department of Justice,Bureau of Justice Statistics, Privacy andSecurity of Criminal History Information:Compendium of State Privacy andSecurity Legislation, 1989 Overview, bySEARCH Group, Inc. (Washington, D.C.,Government Printing Office, April 1990);U.S. Department of Justice, Bureau ofJustice Statistics, Criminal HistoryRecord Information: Compendium ofState Privacy and Security Legislation,1992, by SEARCH, The NationalConsortium for Justice Information andStatistics (Washington, D.C.,Government Printing Office, July 1992).
where applicable. It also includes areview and analysis sectioncontaining a general overview ofstate laws and regulations and adiscussion of trends and conclusionsconcerning two especially importantinformation policy issues: (1)requirements imposed on criminaljustice agencies to maintain recordquality, and (2) dissemination anduse of criminal history informationfor noncriminal justice purposes.Since this volume compiles thematerial from previous compendia, aswell as more recent enactments, thesheer bulk of this body of materialprecludes continuing the practice ofreproducing the complete text of thestate laws and regulations. Copies ofspecific statutes or the complete setof statutes are available onmicrofiche from the NationalCriminal Justice Reference Service(NCJRS) in Rockville, Maryland. Afull, hard-copy library of these laws,regulations and other materials ismaintained by SEARCH, TheNational Consortium for JusticeInformation and Statistics, at itsoffices in Sacramento, California.Copies of specific enactments may beordered by mail or telephone.This Compendium contains foursections. Section 1 sets out anoverview of state criminal historyrecord laws and an analysis of staterequirements relating to data qualityand noncriminal justice access anduse. Section 2 defines the 28 subjectmatter categories into which the lawsand regulations are classified in thetables in the Compendium. Thesecategories are the same as those usedin previous volumes. Section 3 setsout summary tables showing trendsand developments in criminal justiceinformation law and policy byclassification category. Section 4sets out summary tables of criminaljustice information statutes andregulations by state, along with a listof the titles of the state codes (seepage 47) from which the citationswere extracted. All of the tables inSections 3 and 4 set out completecitations to the official state codes orother state compilations where thefull text of the laws and regulationsmay be found. These citations shouldbe used in ordering copies ofparticular provisions from NCJRS orSEARCH.The methodology used in compilingthe Compendium included a survey ofstate officials concerned withcriminal record programs and policy,followed by extensive libraryresearch in the state codes to verifyand augment survey responses. Thesurvey and research compiled thelaws of 53 jurisdictions: the 50states, the District of Columbia,Puerto Rico and the Virgin Islands.In the Compendium, all of thesejurisdictions are referred to as“states.”How to use the CompendiumBecause this volume is a completecompilation of all prior compendiaand supplements, it will not benecessary to consult prior volumes.To facilitate use of this volume, thelaws and regulations have beenclassified into 28 subject-mattercategories that are defined in Section2. Numerous tables are included inSections 3 and 4 to assist readers infinding laws dealing with particularsubjects or to determine whichaspects of information policy areaddressed by particular states. Thesummary tables in Section 3 listcitations to all state statutes andregulations under each of the 28classification categories. Forexample, the table for the category“State regulatory authority” (page 17)indicates which of the states haveprovisions establishing or designating2an agency to promulgate statewideregulations governing criminalhistory records and provides the legalcitations to the provisions. Inaddition to finding particularcitations, the reader is able to quicklyidentify the concentration of statesaddressing a particular policy area.Another view of state privacy andsecurity trends is reflected in thetable on page 15 titled “Surveycomparison of changes in statestatutes and regulations byclassification category.” At a glance,the table indicates the degree ofattention that a particular area ofinformation policy has received in thestates over the past 17 years, asreflected by surveys conducted in1974, 1977, 1979, 1981, 1984, 1987,1989, 1991 and 1994.A summary table for each state isincluded in Section 4. These tablesuse the 28 classification categoriesreferred to above and set out citationsto all of the laws and regulations ofparticular states. If no entry appearsunder one or more classificationcategories for a particular state, itmeans that the state has no law orregulation addressing that policyarea, or that research has failed todiscover any.The state summary tables presentedin Section 4 include subdivisions offour classification categories.Category 3, “Disseminationregulations,” is subdivided to showwhether the states permit or prohibitaccess by various types of groups orindividuals (criminal justice agencies,governmental noncriminal justiceagencies and private agencies orindividuals) to various types ofinformation (conviction, nonconviction and arrest information).Category 4, “Inspection,” issubdivided to show whether the statespermit an individual to inspect hiscriminal history record; inspect his
record and take notes; or inspect hisrecord and obtain a copy ofinformation contained in that record.Category 14, “Accuracy andcompleteness,” is subdivided topermit statutes to be classified asrelating to disposition reporting,auditing, or other accuracy andcompleteness requirements. Finally,Category 22, “Security,” issubdivided to enable statutes to beclassified as relating to physical,administrative or computer security.These classification subdivisionsshould present a more accurate anddetailed view of state legislative andregulatory activity in these fourimportant policy areas and will makethe Compendium a more usefulresearch tool.3
Section 1: Review and analysisA. Current status of thelawIn the early 1970s, at a time whenpublic concern about privacy,automation and mushroominginformation systems was at its height,Congress considered severallegislative proposals that would haveimposed a uniform nationwideinformation management scheme forstate and local handling of criminalhistory record information. AlthoughCongress did not enactcomprehensive legislation, in 1973 itdid adopt an amendment to theOmnibus Crime Control and SafeStreets Act of 1968 (now Section812(b) of the Justice Assistance Actof 1984; Pub. L. 98-473). Theamendment provided in general termsthat all criminal history recordinformation7 collected, maintained ordisseminated by state and localcriminal justice agencies withfinancial support made availableunder the Act must be kept completeand secure, must be made availablefor review and challenge by recordsubjects, and must be used only forlaw enforcement and other lawfulpurposes.In 1975 the U.S. Department ofJustice’s Law EnforcementAssistance Administration issuedcomprehensive information systemsregulations to implement theamendment. These regulations,usually referred to as the Departmentof Justice (DOJ) regulations, areapplicable to all state and local7Investigative and intelligenceinformation is not covered. Wantedperson information, original records ofentry, court records or traffic offenserecords are specifically exempted fromcoverage of the Department of Justiceregulations.criminal justice agencies that haveused funding for the support ofcriminal history record systems. Theregulations impose minimum generalrequirements for criminal historyinformation management, leaving thedevelopment of specific programsand procedures to state legislationand policymaking. As intended, theregulations have been instrumental instimulating many states to enact theirown laws to comply with therequirements of the federalgovernment. In addition, theregulations triggered a reassessmentof existing state privacy and securitylaws that has gone beyond merecompliance, as evidenced by the factthat about half of the states haveenacted comprehensive criminalhistory laws, some of which are insome respects stricter than therequirements of the regulations.Today, virtually all of the states haveenacted legislation governing at leastthe dissemination of criminal historyrecords. Although the approachesdiffer considerably, virtually all ofthe states have followed the lead ofthe regulations in distinguishingbetween information referring toconvictions and current arrests, onthe one hand, and nonconviction dataon the other (information referring tocases without recorded dispositionsor with dispositions favorable to theaccused). Most states have placedstricter limits on the release ofnonconviction data for noncriminaljustice purposes, such as backgroundscreening for employment andlicensing purposes. Virtually all ofthe states also have establishedprocedures to permit record subjectsto review their records and toinstitute procedures to correctinaccuracies. Finally, virtually all ofthe states have established security4procedures complying generally withthe requirements of the regulations.In these areas, as in other areas ofrecord management, the regulationsdo not require the enactment oflegislation, so long as adequateoperational procedures areimplemented by regulation, agencyrule or other appropriate means.Thus, the numbers of state statutes inthese areas cited in this volume donot fully reflect the significantprogress made in these areas ofprivacy protection.Two areas of criminal history recordinformation management meritspecial analysis. These areas are:(1) data quality and (2) disseminationof criminal records for noncriminaljustice purposes. They are discussedin Section B.B. Analysis of criticalissues1. Data qualityAs noted earlier, the broad languageof the 1973 Congressionalamendment provided the basis forcomprehensive regulations issued byLEAA in 1975 covering all state andlocal criminal history record systemssupported in whole or in part byfederal funding. 8 Among otherthings, the regulations require allcovered agencies to implementoperational procedures designed toensure that criminal history recordinformation is complete andaccurate. 98“Criminal Justice InformationSystems Regulations,” 28 C.F.R. Part 20.928 C.F.R. § 20.21(a)(1993).
The regulations state that to becomplete, a record of an arrest mustcontain information concerning anydisposition occurring within the statewithin 90 days after the dispositionhas occurred. In order to promote thedissemination of complete criminalhistory records, the regulationsrequire that state and local agenciesestablish procedures to query thestate central repository prior todisseminating information unless theagency is assured that it isdisseminating the most up-to-datedisposition data or time is of theessence and the repository istechnically incapable of respondingwithin the necessary time period.10purposes of ensuring accuracy andcompleteness.12As noted earlier, the regulations donot require the states to enactlegislation dealing with accuracy andcompleteness. Many states, however,have chosen to deal with the problemby state law. In 1974, just prior topublication of the regulations, only14 states had adopted statutory dataquality safeguards. By 1978, twoyears after the adoption of the LEAAregulations, 41 states had added dataquality provisions of one kind oranother to their criminal historyrecord statutes. That numberincreased to 45 states in 1979, to 49states in 1981, to 51 states in 1984,and to 52 states in 1991.13The provisions of the regulationsdealing with accuracy defineaccuracy literally to mean that “norecord containing criminal historyrecord information shall containerroneous information.”11 In orderto promote accuracy, two types ofoperational procedures are required:(1) a process of data collection, entry,stor
Overview is the ninth in the series of Bureau of Justice Statistics' publications referencing . development and issuance by the Law Enforcement Assistance Administration of the Department of Justice regulations on privacy and security of criminal history record . 1984, 1987, 1989, 1992 and now the current 1994 edition. The purpose of the .
SSRW Research Compendium Introduction 3 About the Compendium This document is a compendium of research on the Sing, Spell, Read & Write program. Included in the compendium are a variety of studies conducted over the last several years. Types of research include: full studies, historical test score analyses, research base
How to Add and update the Published Labs Compendium and the Rads/DI Compendium to the eCW System Compendium Page 5 f. 7. Once found, or a new Lab created, highlight the lab on the list
This redline compares the Compendium (Third) released September 29, 2017, and the Compendium (Third) released January 28, 2021. COMPENDIUM OF U.S COPYRIGHT OFFICE PRACTICES, Third Edition Chapter 1500 : 18 01/28/2021 The “best edition” of a work is defined as “the edition, publishe
COMPENDIUM WEBSITE All of the information in this printed version of the Compendium is also available online at www.herbicide-adjuvants.com. Professor of Weed ScienceThe website was established to supplement this printed Compendium. The site allows users to find additional informa
marketplace activities and some prominent examples of consumer backlash. Based on knowledge-testing and attitudinal survey work, we suggest that Westin’s approach actually segments two recognizable privacy groups: the “privacy resilient” and the “privacy vulnerable.” We then trace the contours of a more usable
U.S. Department of the Interior PRIVACY IMPACT ASSESSMENT Introduction The Department of the Interior requires PIAs to be conducted and maintained on all IT systems whether already in existence, in development or undergoing modification in order to adequately evaluate privacy risks, ensure the protection of privacy information, and consider privacy
The DHS Privacy Office Guide to Implementing Privacy 4 The mission of the DHS Privacy Office is to preserve and enhance privacy protections for
Why should I use a 3M privacy filter (compared to other brands or switchable privacy)? When it comes to protecting your data, don't compromise, use the best in class "black out" privacy filters from 3M. Ŕ Zone of privacy, protection from just 30-degree either side for best in class security against visual hackers
