S.1193 - Data Security and Breach Notification Act of 2013

A bill to require certain entities that collect and maintain personal information of individuals to secure such information and to provide notice to such individuals in the case of a breach of security involving such information, and for other purposes. view all titles (2)

All Bill Titles

  • Official: A bill to require certain entities that collect and maintain personal information of individuals to secure such information and to provide notice to such individuals in the case of a breach of security involving such information, and for other purposes. as introduced.
  • Short: Data Security and Breach Notification Act of 2013 as introduced.

This Bill currently has no wiki content. If you would like to create a wiki entry for this bill, please Login, and then select the wiki tab to create it.

Bill’s Views

  • Today: 1
  • Past Seven Days: 2
  • All-Time: 345
 
Introduced
 
Senate
Passes
 
House
Passes
 
President
Signs
 

 
06/19/13
 
 
 
 
 
 
 

Official Summary

Data Security and Breach Notification Act of 2013 - Requires commercial entities that acquire, maintain, store, or utilize personal information (covered entities) to take reasonable measures to protect and secure data in electronic form containing personal information. Directs a covered en

Official Summary

Data Security and Breach Notification Act of 2013 - Requires commercial entities that acquire, maintain, store, or utilize personal information (covered entities) to take reasonable measures to protect and secure data in electronic form containing personal information. Directs a covered entity that owns or licenses such data to give notice of any breach of security that the entity reasonably believes has caused or will cause identity theft or other actual financial harm to each individual:
(1) who is a U.S. citizen or resident; and
(2) whose personal information was, or that the covered entity reasonably believes has been, accessed and acquired by an unauthorized person. Requires a covered entity to notify the Secret Service or the Federal Bureau of Investigation (FBI) of a security breach of personal information involving more than 10,000 individuals. Requires a third-party entity contracted to maintain, store, or process data containing personal information to notify the covered entity of a breach of security of a system. Requires a service provider to notify the covered entity if it becomes aware of a breach of security involving personal information owned or possessed by a covered entity and if such covered entity can be reasonably identified. Allows delays of notifications to avoid interfering with a civil or criminal investigation or threatening national or homeland security. Sets forth the methods for notification under this Act. Preempts information security practices of the Communications Act of 1934 applicable to telecommunication carriers, satellite operators, and cable operators. Sets forth the enforcement authority for the Federal Trade Commission (FTC) along with civil monetary penalties for violations of this Act. Exempts certain financial institutions and entities subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

...Read the Rest




Vote on This Bill

100% Users Support Bill

1 in favor / 0 opposed
 

Send Your Senator a Letter

about this bill Support Oppose Tracking
Track with MyOC