Florida 2025 Regular Session

Florida Senate Bill S7020

Introduced
3/19/25  
Refer
3/19/25  
Engrossed
4/3/25  
Refer
4/28/25  
Enrolled
4/29/25  
Passed
5/16/25  

Caption

OGSR/Agency Cybersecurity Information

Impact

The implementation of SB 7020 has significant implications for the state’s transparency policies. It allows state agencies to protect sensitive cybersecurity information from public disclosure, thereby minimizing the risk of malicious actors accessing critical infrastructure and information technology resources. While this might enhance security, it simultaneously raises concerns over the balance between transparency and security, especially in the context of public access to government information. Critics fear that the extended exemptions could foster a lack of accountability in governmental cybersecurity practices.

Summary

SB 7020 aims to amend existing Florida statutes regarding public records and meetings by providing exemptions for agency cybersecurity information. The bill updates the definition and protections around critical infrastructure data and cybersecurity measures. It emphasizes confidentiality for specific documents related to agency cybersecurity evaluations, audits, and incident reports, which, if disclosed, could hamper the agency’s security posture. Additionally, this bill revises the review date for existing exemptions to ensure these protective measures continue until at least October 2, 2026, ensuring relevance to contemporary cybersecurity threats.

Sentiment

The sentiment surrounding SB 7020 appears to be mixed. Supporters argue that the bill is necessary to protect state resources from cyber threats, emphasizing the importance of safeguarding sensitive information in an age of increasing digital vulnerabilities. Conversely, detractors highlight the potential for reduced oversight and transparency regarding government operations. The broader debate brings forth concerns regarding citizens' rights to access information about their government while recognizing the essential need for enhanced cybersecurity measures.

Contention

Notable points of contention include the potential exclusivity of information and the implications for public discourse. Although proponents of the bill advocate for stronger cybersecurity measures, opponents view the blanket exemptions as overreaching. There is a concern that exempting such information from public records could lead to a diminished role for public scrutiny and criticism of state cybersecurity policies. The ongoing discourse highlights the fundamental challenge of navigating the tension between necessary confidentiality for security and the democratic principles of transparency.

Companion Bills

FL H7013

Similar To OGSR/Cybersecurity

Similar Bills

US HB1664

Deploying American Blockchains Act of 2025

US SB1492

Deploying American Blockchains Act of 2025

MS SB2653

Mississippi IT Optimization Act; enact.

KS SB51

House Substitute for SB 51 by Committee on Legislative Modernization - Authorizing the chief information security officer to receive audit reports, updating statutes related to services provided by the chief information technology officer and authorizing the office of information technology services to provide certain services to political subdivisions and hospitals.

NJ A838

Requires State agencies to develop and submit information technology strategic plan.

NJ S1298

Provides that fusion energy and fusion technology companies are eligible to receive benefits under certain economic incentive programs.

MS HB1724

Statewide Information Technology Optimization Program; create for coordinated efforts across agencies.

CA SB1079

Department of Forestry and Fire Protection: Fire Innovation Unit.