For Texas Small Businesses
Is Your Texas Business In "Safe Harbor"?
Texas SB 2610 isn't just for law firms — any business that handles Texans' personal data can earn an affirmative defense by maintaining a documented cybersecurity program. Enter your domain or email for an instant audit.
Texas Cybersecurity Safe Harbor (SB 2610)
The law scales with your headcount. Maintain a documented program sized to your business and you gain an affirmative defense against punitive damages if a breach ever leads to a lawsuit.
Tier 1: Under 20 Employees
Requires strict access controls (unique accounts + least privilege), documented password policies with mandatory MFA, and regular security awareness training.
Tier 2: 20-99 Employees
Requires active asset & software inventory, continuous automated vulnerability management, endpoint protection, and tested data recovery backups.
Tier 3: 100-249 Employees
Requires full alignment with NIST CSF or ISO 27001, advanced 24/7 threat detection, and rigorous third-party risk management.
The Golden Rule: Document everything and formally review your program annually.
Get into Safe Harbor
We fix what the audit finds and build the documented program SB 2610 rewards — sized to your business, not an enterprise.
See Services & Pricing