California’s Internet of Things (IoT) law, which goes into effect on January 1, will regulate organizations that manufacture (or contract with another company to manufacture) certain types of connected devices that are sold or offered for sale in California.
The law will require IoT device manufacturers to equip each connected device “with a reasonable security feature or features” that are:
- Appropriate to the nature and function of the device
- Appropriate to the information the device may collect, contain or transmit
- Designed to protect both the device and any information it contains from unauthorized access, destruction, use, modification or disclosure
Details on the law here from the International Association of Privacy Professionals.