This policy is posted pursuant to recent changes in state law (Senate Bill 129 of the 1999-2000 Regular Session of the California State Legislature).
- The California Health and Human Services Agency (the Agency) and each of its departments, offices, boards and commissions obtain personally identifiable data only through lawful means.
- Personally identifiable data collected by the Agency and its subdivisions are relevant to the purposes for which they are collected. The Agency and its subdivisions specify the reasons for collection of personally identifiable data at or before the time of collection.
- The Agency and its subdivisions do not disclose, make available, or use any personally identifiable data for purposes other than the reasons specified at or before the time of collection without the consent of the subject of the data or as authorized by law or regulation.
- All personal information collected and maintained by the Agency and its subdivisions is secured against loss, damage, modification or unauthorized disclosure. The Agency and its subdivisions use multiple technological and procedural approaches to protect against unauthorized disclosure of this information pursuant to current law and practice. These practices and policies are reviewed regularly.
These policies have been developed and are maintained in accordance with the Information Practices Act of 1977 (Title 1.8 (commencing with Section 1798) of Part 4 of Division 3 of the Civil Code) and according to Section 11019.9 of the Government Code.
Last modified: April 29, 2023