Nevada Revised Statutes
Chapter 603A - Security and Privacy of Personal Information
NRS 603A.360 - Enforcement by Attorney General; civil penalty for violation or injunction; no private right of action against operator; provisions not exclusive.


1. The Attorney General shall enforce the provisions of NRS 603A.300 to 603A.360, inclusive.
2. If the Attorney General has reason to believe that an operator, either directly or indirectly, has violated or is violating NRS 603A.340 or 603A.345, the Attorney General may institute an appropriate legal proceeding against the operator. The district court, upon a showing that the operator, either directly or indirectly, has violated or is violating NRS 603A.340 or 603A.345, may:
(a) Issue a temporary or permanent injunction; or
(b) Impose a civil penalty not to exceed $5,000 for each violation.
3. If the Attorney General has reason to believe that a data broker, either directly or indirectly, has violated or is violating NRS 603A.346, the Attorney General may institute an appropriate legal proceeding against the data broker. The district court, upon a showing that the data broker, either directly or indirectly, has violated or is violating NRS 603A.346, may:
(a) Issue a temporary or permanent injunction; or
(b) Impose a civil penalty not to exceed $5,000 for each violation.
4. The provisions of NRS 603A.300 to 603A.360, inclusive, do not establish a private right of action against an operator.
5. The provisions of NRS 603A.300 to 603A.360, inclusive, are not exclusive and are in addition to any other remedies provided by law.
(Added to NRS by 2017, 4079; A 2019, 1172; 2021, 1676)

<< Previous

Structure Nevada Revised Statutes

Nevada Revised Statutes

Chapter 603A - Security and Privacy of Personal Information

NRS 603A.010 - Definitions.

NRS 603A.020 - "Breach of the security of the system data" defined.

NRS 603A.030 - "Data collector" defined.

NRS 603A.040 - "Personal information" defined.

NRS 603A.100 - Applicability; waiver of provisions prohibited.

NRS 603A.200 - Destruction of certain records.

NRS 603A.210 - Security measures.

NRS 603A.215 - Security measures for data collector that accepts payment card; use of encryption; liability for damages; applicability.

NRS 603A.217 - Alternative methods of and technologies for encryption: Adoption of regulations.

NRS 603A.220 - Disclosure of breach of security of system data; methods of disclosure.

NRS 603A.260 - Violation constitutes deceptive trade practice.

NRS 603A.270 - Civil action.

NRS 603A.280 - Restitution.

NRS 603A.290 - Injunction.

NRS 603A.300 - Definitions.

NRS 603A.310 - "Consumer" defined.

NRS 603A.320 - "Covered information" defined.

NRS 603A.323 - "Data broker" defined.

NRS 603A.325 - "Designated request address" defined.

NRS 603A.330 - "Operator" defined.

NRS 603A.333 - "Sale" defined.

NRS 603A.337 - "Verified request" defined.

NRS 603A.338 - Applicability of provisions.

NRS 603A.340 - Notice regarding covered information collected by operator: Operator required to make available to consumers; contents; exception.

NRS 603A.345 - Submission of verified request to operator not to sell covered information collected by operator; response to verified request.

NRS 603A.346 - Submission of verified request to data broker not to sell covered information purchased by data broker; response to verified request.

NRS 603A.347 - Data broker authorized to remedy first failure to comply with requirements concerning verified request.

NRS 603A.348 - Operator authorized to remedy first failure to comply with notice requirements.

NRS 603A.349 - Operator authorized to remedy first failure to comply with requirements concerning verified request.

NRS 603A.350 - Unlawful acts.

NRS 603A.360 - Enforcement by Attorney General; civil penalty for violation or injunction; no private right of action against operator; provisions not exclusive.