Sunrise over V.A. Capitol.
VIRGINIA FREEDOM OF INFORMATION ADVISORY COUNCIL
COMMONWEALTH OF VIRGINIA

Records Exemptions of General Applicability
(Updated to reflect amendments effective July 1, 2017)

§ 2.2-3705.1 (1): Personnel. Provides an exemption for:

Personnel information concerning identifiable individuals, except that access shall not be denied to the person who is the subject thereof. Any person who is the subject of such information and who is 18 years of age or older may waive, in writing, the protections afforded by this subdivision. If the protections are so waived, such information shall be disclosed. Nothing in this subdivision shall be construed to authorize the withholding of any resumes or applications submitted by persons who are appointed by the Governor pursuant to § 2.2-106 or 2.2-107.

No provision of this chapter or any provision of Chapter 38 (§ 2.2-3800 et seq.) shall be construed as denying public access to (i) contracts between a public body and its officers or employees, other than contracts settling public employee employment disputes held confidential as personnel records under § 2.2-3705.1; (ii) records of the name, position, job classification, official salary, or rate of pay of, and records of the allowances or reimbursements for expenses paid to, any officer, official, or employee of a public body; or (iii) the compensation or benefits paid by any corporation organized by the Virginia Retirement System or its officers or employees. The provisions of this subdivision, however, shall not require public access to records of the official salaries or rates of pay of public employees whose annual rate of pay is $10,000 or less.

§ 2.2-3705.1 (2): Attorney-client privilege. Provides an exemption for:

Written advice of legal counsel to state, regional or local public bodies or the officers or employees of such public bodies, and any other information protected by the attorney-client privilege.

§ 2.2-3705.1 (3): Attorney work product. Provides an exemption for:

Legal memoranda and other work product compiled specifically for use in litigation or for use in an active administrative investigation concerning a matter that is properly the subject of a closed meeting under § 2.2-3711.

§ 2.2-3705.1 (4): Tests and examinations. Provides an exemption for:

Any test or examination used, administered or prepared by any public body for purposes of evaluation of (i) any student or any student's performance, (ii) any employee or employment seeker's qualifications or aptitude for employment, retention, or promotion, or (iii) qualifications for any license or certificate issued by a public body.

As used in this subdivision, "test or examination" shall include (a) any scoring key for any such test or examination and (b) any other document that would jeopardize the security of the test or examination. Nothing contained in this subdivision shall prohibit the release of test scores or results as provided by law, or limit access to individual records as provided by law. However, the subject of such employment tests shall be entitled to review and inspect all records relative to his performance on such employment tests.

When, in the reasonable opinion of such public body, any such test or examination no longer has any potential for future use, and the security of future tests or examinations will not be jeopardized, the test or examination shall be made available to the public. However, minimum competency tests administered to public school children shall be made available to the public contemporaneously with statewide release of the scores of those taking such tests, but in no event shall such tests be made available to the public later than six months after the administration of such tests.

§ 2.2-3705.1 (5): Closed meetings. Provides an exemption for:

Records recorded in or compiled exclusively for use in closed meetings lawfully held pursuant to § 2.2-3711. However, no record that is otherwise open to inspection under this chapter shall be deemed exempt by virtue of the fact that it has been reviewed or discussed in a closed meeting.

§ 2.2-3705.1 (6): Vendor proprietary information. Provides an exemption for:

Vendor proprietary information software that may be in the public records of a public body. For the purpose of this subdivision, "vendor proprietary information software" means computer programs acquired from a vendor for purposes of processing data for agencies or political subdivisions of the Commonwealth.

§ 2.2-3705.1 (7): Computer software. Provides an exemption for:

Computer software developed by or for a state agency, state-supported institution of higher education or political subdivision of the Commonwealth.

§ 2.2-3705.1 (8): Cost estimates of real property. Provides an exemption for:

Appraisals and cost estimates of real property subject to a proposed purchase, sale or lease, prior to the completion of such purchase, sale or lease.

§ 2.2-3705.1 (10): Certain personal information. Provides an exemption for:

Personal contact information furnished to a public body for the purpose of receiving electronic mail from the public body, provided that the electronic mail recipient has requested that the public body not disclose such information. However, access shall not be denied to the person who is the subject of the record. As used in this subdivision, "personal contact information" means the information provided to the public body for the purpose of receiving electronic mail from the public body and includes home or business (i) address, (ii) email address, or (iii) telephone number or comparable number assigned to any other electronic communication device.

§ 2.2-3705.1 (12): Contracts. Provides an exemption for:

Information relating to the negotiation and award of a specific contract where competition or bargaining is involved and where the release of such information would adversely affect the bargaining position or negotiating strategy of the public body. Such information shall not be withheld after the public body has made a decision to award or not to award the contract. In the case of procurement transactions conducted pursuant to the Virginia Public Procurement Act (§ 2.2-4300 et seq.), the provisions of this subdivision shall not apply, and any release of information relating to such transactions shall be governed by the Virginia Public Procurement Act.

§ 2.2-3705.1 (13): Account Numbers. Provides an exemption for:

Account numbers or routing information for any credit card, debit card, or other account with a financial institution of any person or public body. However, access shall not be denied to the person who is the subject of the information. For the purposes of this subdivision, "financial institution" means any organization authorized to do business under state or federal laws relating to financial institutions, including, without limitation, banks and trust companies, savings banks, savings and loan companies or associations, and credit unions.

§ 2.2-3705.2 (2): Security Systems. Provides an exemption for:

Documentation or other information that describes the design, function, operation or access control features of any security system, whether manual or automated, which is used to control access to or use of any automated data processing or telecommunications system.

§ 2.2-3705.2 (14): Public safety; critical infrastructure, surveillance, etc. Provides an exemption for:

Information contained in (i) engineering, architectural, or construction drawings; (ii) operational, procedural, tactical planning, or training manuals; (iii) staff meeting minutes; or (iv) other records that reveal any of the following, the disclosure of which would jeopardize the safety or security of any person; governmental facility, building, or structure or persons using such facility, building, or structure; or public or private commercial office, multifamily residential, or retail building or its occupants:

a. Critical infrastructure information or the location or operation of security equipment and systems of any public building, structure, or information storage facility, including ventilation systems, fire protection equipment, mandatory building emergency equipment or systems, elevators, electrical systems, telecommunications equipment and systems, or utility equipment and systems;

b. Vulnerability assessments, information not lawfully available to the public regarding specific cybersecurity threats or vulnerabilities, or security plans and measures of an entity, facility, building structure, information technology system, or software program;

c. Surveillance techniques, personnel deployments, alarm or security systems or technologies, or operational or transportation plans or protocols; or

d. Interconnectivity, network monitoring, network operation centers, master sites, or systems related to the Statewide Agencies Radio System (STARS) or any other similar local or regional public safety communications system.

The same categories of records of any person or entity submitted to a public body for the purpose of antiterrorism response planning or cybersecurity planning or protection may be withheld from disclosure if such person or entity in writing (a) invokes the protections of this subdivision, (b) identifies with specificity the records or portions thereof for which protection is sought, and (c) states with reasonable particularity why the protection of such records from public disclosure is necessary to meet the objective of antiterrorism, cybersecurity planning or protection, or critical infrastructure information security and resilience. Such statement shall be a public record and shall be disclosed upon request.

Any public body receiving a request for records excluded under clauses (a) and (b) of this subdivision 14 shall notify the Secretary of Public Safety and Homeland Security or his designee of such request and the response made by the public body in accordance with § 2.2-3704.

Nothing in this subdivision 14 shall prevent the disclosure of records relating to (1) the structural or environmental soundness of any such facility, building, or structure or (2) an inquiry into the performance of such facility, building, or structure after it has been subjected to fire, explosion, natural disaster, or other catastrophic event.

As used in this subdivision, "critical infrastructure information" means the same as that term is defined in 6 U.S.C. § 131.

§ 2.2-3705.4 (1): Scholastic Records. Provides an exemption for:

Scholastic records containing information concerning identifiable individuals, except that such access shall not be denied to the person who is the subject thereof, or the parent or legal guardian of the student. However, no student shall have access to (i) financial records of a parent or guardian or (ii) records of instructional, supervisory, and administrative personnel and educational personnel ancillary thereto, that are in the sole possession of the maker thereof and that are not accessible or revealed to any other person except a substitute.

The parent or legal guardian of a student may prohibit, by written request, the release of any individual information regarding that student until the student reaches the age of 18 years. For scholastic records of students under the age of 18 years, the right of access may be asserted only by his legal guardian or parent, including a noncustodial parent, unless such parent's parental rights have been terminated or a court of competent jurisdiction has restricted or denied such access. For scholastic records of students who are emancipated or attending a public institution of higher education in the Commonwealth, the right of access may be asserted by the student.
Any person who is the subject of any scholastic record and who is 18 years of age or older may waive, in writing, the protections afforded by this subdivision. If the protections are so waived, such records shall be disclosed.

§ 2.2-3705.5 (1): Health. Provides an exemption for:

Health records, except that such records may be personally reviewed by the individual who is the subject of such records, as provided in subsection F of § 32.1-127.1:03.

Where the person who is the subject of health records is confined in a state or local correctional facility, the administrator or chief medical officer of such facility may assert such confined person's right of access to the health records if the administrator or chief medical officer has reasonable cause to believe that such confined person has an infectious disease or other medical condition from which other persons so confined need to be protected. Health records shall only be reviewed and shall not be copied by such administrator or chief medical officer. The information in the health records of a person so confined shall continue to be confidential and shall not be disclosed by the administrator or chief medical officer of the facility to any person except the subject or except as provided by law.

Where the person who is the subject of health records is under the age of 18, his right of access may be asserted only by his guardian or his parent, including a noncustodial parent, unless such parent's parental rights have been terminated, a court of competent jurisdiction has restricted or denied such access, or a parent has been denied access to the health record in accordance with § 20-124.6. In instances where the person who is the subject thereof is an emancipated minor, a student in a public institution of higher education, or is a minor who has consented to his own treatment as authorized by § 16.1-338 or 54.1-2969, the right of access may be asserted by the subject person.

For the purposes of this chapter, statistical summaries of incidents and statistical data concerning abuse of individuals receiving services compiled by the Commissioner of Behavioral Health and Developmental Services shall be disclosed. No such summaries or data shall include any information that identifies specific individuals receiving services.

§ 2.2-3705.6 (3): Economic development and retention. Provides an exemption for:

Proprietary information, voluntarily provided by private business pursuant to a promise of confidentiality from a public body, used by the public body for business, trade, and tourism development or retention; and memoranda, working papers, or other information related to businesses that are considering locating or expanding in Virginia, prepared by a public body, where competition or bargaining is involved and where disclosure of such information would adversely affect the financial interest of the public body.

§ 2.2-3705.6 (10): Prequalification to bid. Provides an exemption for:

Confidential information designated as provided in subsection F of § 2.2-4342 as trade secrets or proprietary information by any person in connection with a procurement transaction or by any person who has submitted to a public body an application for prequalification to bid on public construction projects in accordance with subsection B of § 2.2-4317.

© 2025 | FOIA COUNCIL HOME | DLS HOME | GENERAL ASSEMBLY HOME