New Jersey Bill no. 562 requires health insurers in the state to encrypt personal information stored in their system. Insurance carriers shall not maintain computerized records that include personal information, “unless that information is secured by encryption or by any other method or technology”. The requirement is stronger than what’s included in HIPAA, which considers encryption as an addressable implementation (see here for more information). The New Jersey law will go into effect in July 2015.
The content of New Jersey Bill no. 562 is available at http://www.njleg.state.nj.,,,