Washington State

House of Representatives

Office of Program Research

BILL

ANALYSIS

Appropriations Committee

HJR 4202

This analysis was prepared by non-partisan legislative staff for the use of legislative members in their deliberations. This analysis is not a part of the legislation nor does it constitute a statement of legislative intent.

Brief Description: Amending the state Constitution to permit appropriations from the budget stabilization account in certain cases where there has been a breach of information technology systems.

Sponsors: Representatives Hudgins and Stanford.

Brief Summary of Bill

  • Permits the Legislature to appropriate from the Budget Stabilization Account with a constitutional majority vote of both houses if state expenditures are required to address an information technology security incident.

Hearing Date: 2/2/17

Staff: Kristen Fraser (786-7148) and James Mackison (786-7104).

Background:

Budget Stabilization Account.

In 2007 the voters ratified a constitutional amendment that created the Budget Stabilization Account (BSA) as Article VII, section 12 of the state constitution. Each year, the State Treasurer must deposit 1 percent of general state revenues (GSR) into the constitutionally created BSA. Under a further constitutional amendment ratified in 2011, extraordinary revenue growth in GSR must also be transferred to the BSA. GSR is defined in the constitution and is generally synonymous with the statutory State General Fund. GSR is estimated to be $19.851 billion for fiscal year 2018 and $20.632 billion for fiscal year 2019.

In general, appropriations from the BSA require a three-fifths majority in each house of the Legislature. However, the Legislature may appropriate from the BSA by a constitutional majority vote of each house in two cases:

Information Technology Systems.

State agencies manage and rely on information technology (IT) systems and infrastructure to deliver services. These systems include online services used by the public, agency applications, communications networks, computer hardware and software, and other infrastructure that stores and transmits data. State agencies are required to maintain an IT security program to protect state systems and infrastructure, and disaster recovery plans for systems that support essential agency functions. Public agencies and private entities within the state also rely on the availability of the Internet and communications infrastructure for operations and electronic commerce.

An IT security incident is an accidental or deliberative event that results in or constitutes an imminent threat of the unauthorized access, loss, disclosure, modification, disruption, or destruction of communication and information resources.

Summary of Bill:

The Legislature may make appropriations from the Budget Stabilization Account with a constitutional majority vote of both houses if state expenditures are required to address an information security incident, subject to specified conditions. These conditions are met if the governor declares by proclamation that a security incident affecting one or more state information technology systems requires significant state expenditures either to repair or protect state information technology systems, or to address state liability from the security incident. The appropriations legislation must be limited to either or both of these purposes. "Significant state expenditures" means an amount that exceeds one half of 1 percent of General State Revenues. (By way of illustration, this amount would be approximately $99.26 million in fiscal year 2018.)

Appropriation: None.

Fiscal Note: Not requested.