A. The Secretary of Technology, in consultation with the Secretary of Transportation, shall review and approve or disapprove, upon the recommendation of the Identity Management Standards Advisory Council pursuant to § 2.2-437, guidance documents that adopt (i) nationally recognized technical and data standards regarding the verification and authentication of identity in digital and online transactions; (ii) the minimum specifications and standards that should be included in an identity trust framework, as defined in § 59.1-550, so as to warrant liability protection pursuant to the Electronic Identity Management Act (§ 59.1-550 et seq.); and (iii) any other related data standards or specifications concerning reliance by third parties on identity credentials, as defined in § 59.1-550.
B. Final guidance documents approved pursuant to subsection A shall be posted on the Virginia Regulatory Town Hall and published in the Virginia Register of Regulations as a general notice. The Secretary of Technology shall send a copy of the final guidance documents to the Joint Commission on Administrative Rules established pursuant to § 30-73.1 at least 90 days prior to the effective date of such guidance documents. The Secretary of Technology shall also annually file a list of available guidance documents developed pursuant to this chapter pursuant to § 2.2-4103.1 of the Virginia Administrative Process Act (§ 2.2-4000 et seq.) and shall send a copy of such list to the Joint Commission on Administrative Rules.
2015, cc. 482, 483; 2017, c. 488.