Require companies to disclose personal information data breaches
"California and other states have laws requiring a company that may have disclosed a resident's personal information without authorization to inform the victim of the disclosure. Barack Obama and Joe Biden believe that all Americans deserve the same right to know and will push for comparable federal legislation."
Sources:
Subjects: Corporations, Technology, Transparency
Bill requiring notice of security breaches passes House
Updated: Friday, January 8th, 2010 | By Robert Farley
On April 30, 2009, Rep. Bobby Rush, D-Ill., chairman of the Energy and Commerce Subcommittee on Commerce, Trade and Consumer Protection, introduced H.R. 2221, the Data Accountability and Trust Act of 2009. The purpose of the bill is to require "reasonable security policies and procedures to protect data containing personal information, and to provide for nationwide notice in the event of a security breach."
The bill was co-sponsored by legislators on both sides of the aisle: Rep. Joe Barton, R-Texas, ranking member of the House Committee on Energy and Commerce; Rep. Cliff Stearns, R-Fla., the Republican leader on the Communications, Technology and the Internet Subcommittee; Rep. George Radanovich, R-Calif.; and Rep. Janice Schakowski, D-Ill.
In a statement before his subcommittee, Rep. Rush noted that similar bills have been introduced in the last two sessions of Congress. Two years ago, it even passed the full Energy and Commerce Committee by a unanimous vote, but then stalled.
The bill has faltered, Rush said, as a result of "jurisdictional disputes."
Still, with the bipartisan support it enjoys from co-sponsors, Rush expressed confidence that this time around, it will become law.
According to Rush, the bill "establishes notification procedures that a company must take when a data breach occurs in order to allow affected consumers to protect themselves. Companies do not have to initiate such notices if they determine that 'there is no reasonable risk of identity theft, fraud or other unlawful conduct.'"
On Dec. 8, 2009, the bill passed in the House with a voice vote. The next day, it was referred to the Senate Committee on Commerce, Science, and Transportation.
We move this promise to In the Works.
Sources:
Library of Congress, H.R. 2221, the Data Accountability and Trust Act of 2009
Web site of Rep. Bobby Rush, Statement by Rep. Rush, Chairman Energy and Commerce Subcommittee on Commerce, Trade and Consumer Protection, at the Hearing on H.R. 2221, May 5, 2009
We want to hear your suggestions and comments.
For tips or comments on our Obameter and our GOP-Pledge-O-Meter promise databases, please e-mail the Obameter. If you are commenting on a specific promise, please include the wording of the promise.
For comments about our Truth-O-Meter or Flip-O-Meter items, please e-mail the Truth-O-Meter. We’re especially interested in seeing any chain e-mails you receive that you would like us to check out. If you send us a comment, we'll assume you don't mind us publishing it unless you tell us otherwise.Keep up to date with Politifact:
- Sign up for our e-mail (about once a week)
- Put a free PolitiFact widget on your blog or Web page
- Subscribe to our RSS feeds on Truth-O-Meter items
- Subscribe to our RSS feeds on GOP Pledge-O-Meter items
- Subscribe to our RSS feeds on Obameter items
- Follow us on Twitter
- Fan us on Facebook
- Advertise on PolitiFact
- Shop the PolitiFact store for T-shirts, hats and other PolitiFact swag
