Enterprise Systems Catalog
Section 6270.5 defines an enterprise system as a software application or computer system that collects, stores, exchanges, and analyzes information that the agency uses that is a multi-departmental system or system that contains information collected about the public and a system of record. A system of record means a system that serves as an original source of data within an agency.
For each enterprise system included in the catalog list, agencies must disclose:
- Current system vendor
- Current system product
- The purpose of the system
- What kind of data is stored in it
- The department that serves as the system's primary custodian
- How frequently system data is collected
- How frequently system data is updated
What is excluded?
Enterprise systems do not include cybersecurity systems, infrastructure and mechanical control systems, or information that would reveal vulnerabilities to, or otherwise increase the potential for an attack on, a public agency's IT system. Additionally, section 6270.5 does not automatically require disclosure of the specific records that the IT systems collect, store, exchange or analyze, however, the Act's other provisions pertaining to disclosure of such records still apply.
Full text of SB 272
Padre Dam's Catalog of Enterprise Systems
Please click here to see a complete list of vendors and products used.