Utah Code 63F-2 established the Data Security Management Council in the 2015 general session. Utah Code 63F-2-103 explicitly requires the council chair to prepare an annual report that addresses:
- a summary of topics the council studied during the year
- best practice recommendations for state government
- recommendations for implementing the council’s best practice recommendations