S.B. 227, which becomes effective on January 1, 2010, will require encryption of all personal information leaving the "logical or physical controls of the data collector," including electronic data on a "data storage device." … Continue Reading