Some state regulatory commissions have reportedly kicked off efforts to gather information on the cybersecurity practices of rural broadband providers operating within their states using a survey developed by the National Association of Regulatory Commissioners. The NARUC cybersecurity survey contains 100 questions seeking precise details on issues ranging from network vulnerability assessments to personnel background checks. Is this a fact-finding mission, or another case of regulatory creep? Or worse, will it create a treasure trove of data ripe for the taking?