Utah’s Office of the State Auditor on Monday announced that the state’s privacy officer had completed a comprehensive privacy review of governmental entities and nonprofit organizations in the state. The results showed that 66% of those reviewed failed to meet a requirement of the state’s privacy statute.
Phillips said initial data from the assessment will help to “set a baseline” so she can target support and measure the improvement over the coming months.
Phillips said her office has also analyzed compliance by organization type, but has not made that information publicly available.
Along with providing targeted support, Phillips said she hopes the review will improve transparency and accountability across the state, which is one Utah’s fundamental privacy principles, by the time the next assessment comes around.
“I hope to see significant improvement of compliance when we reassess in 6 months. I especially want to see an increase in compliance with government entities that pose a higher-risk level,” Phillips wrote. “Being transparent about how personally-identifiable information (PII) is collected, used, shared, and protected can build the public’s trust in Utah’s government entities.”