Iowa Statutes
§ 507F.9 — Cybersecurity event — third-party service providers
Iowa § 507F.9
This text of Iowa § 507F.9 (Cybersecurity event — third-party service providers) is published on Counsel Stack Legal Research, covering Iowa primary law. Counsel Stack provides free access to over 12 million legal documents including statutes, case law, regulations, and constitutions.
Bluebook
Iowa Code § 507F.9 (2026).
Text
1.If a licensee becomes aware of a cybersecurity event in an information system
maintained by a third-party service provider of the licensee, the licensee shall comply with
section 507F.7, or the licensee may obtain a written certification from the third-party service
provider that the provider is in compliance with section 507F.7. If the third-party provider
fails to provide written certification to the licensee, the licensee shall comply with section
507F.7. The computation of the licensee’s deadlines pursuant to section 507F.7 shall begin on
the business day after the date on which the licensee’s third-party service provider notifies
the licensee of a cybersecurity event, or the date on which the licensee has actual knowledge
of the cybersecurity event, whichever date is earlier.
2.Th
Free access — add to your briefcase to read the full text and ask questions with AI
Nearby Sections
15
§ 507F.1
Title§ 507F.10
Cybersecurity event reinsurers§ 507F.12
Confidentiality§ 507F.13
Applicability§ 507F.14
Penalties§ 507F.15
Rules and enforcement§ 507F.16
Severability§ 507F.2
Purpose and scope§ 507F.3
Definitions§ 507F.4
Information security programCite This Page — Counsel Stack
Bluebook (online)
Iowa § 507F.9, Counsel Stack Legal Research, https://law.counselstack.com/statute/ia/507F.9.