S.3742 - Data Security and Breach Notification Act of 2010

A bill to protect consumers by requiring reasonable security policies and procedures to protect data containing personal information, and to provide for nationwide notice in the event of a security breach. view all titles (2)

All Bill Titles

  • Official: A bill to protect consumers by requiring reasonable security policies and procedures to protect data containing personal information, and to provide for nationwide notice in the event of a security breach. as introduced.
  • Short: Data Security and Breach Notification Act of 2010 as introduced.

This Bill currently has no wiki content. If you would like to create a wiki entry for this bill, please Login, and then select the wiki tab to create it.

Bill’s Views

  • Today: 1
  • Past Seven Days: 2
  • All-Time: 6,593
 
Introduced
 
Senate
Passes
 
House
Passes
 
President
Signs
 

 
08/05/10
 
 
 
 
 
 
 

Official Summary

Data Security and Breach Notification Act of 2010 - Requires the Federal Trade Commission (FTC) to promulgate regulations requiring each covered entity (proprietorships, partnerships, estates, trusts, cooperatives, and nonprofit and for-profit corporations) engaged in interstate commerce ow

Official Summary

Data Security and Breach Notification Act of 2010 - Requires the Federal Trade Commission (FTC) to promulgate regulations requiring each covered entity (proprietorships, partnerships, estates, trusts, cooperatives, and nonprofit and for-profit corporations) engaged in interstate commerce owning or possessing data containing personal information to establish specified security policies and procedures to treat and protect such information. Requires the regulations to include methods for disposing of both electronic and nonelectronic data. Requires information brokers to submit their security policies to the FTC in conjunction with a notification of a security breach notification or on FTC request. Authorizes the FTC to conduct information security practices audits of brokers or require brokers to conduct independent audits. Requires information brokers to:
(1) establish procedures to verify the accuracy of information that identifies individuals;
(2) provide to individuals whose personal information it maintains a means to review it;
(3) place a conspicuous notice on the Internet instructing individuals how to request access to such information; and
(4) correct inaccurate information. Directs the FTC to require information brokers to establish measures which facilitate the auditing or retracing of access to, or transmissions of, any data containing personal information. Makes it unlawful for information brokers to obtain or disclose personal information by false pretenses (pretexting). Requires a covered entity to notify the FTC and affected individuals of information security breaches. Sets forth requirements concerning such notification, including method of notification requirements and timeliness requirements. Allows an exemption from notification requirements if the covered entity determines that there is no reasonable risk of identity theft, fraud, or other unlawful conduct. Preempts state information security laws.

...Read the Rest

Organizations Supporting S.3742

  • TechAmerica
  • Consumers Union

Organizations Opposing S.3742

  • American Hospital Association
  • Consumer Data Industry Association




Vote on This Bill

75% Users Support Bill

3 in favor / 1 opposed
 

Send Your Senator a Letter

about this bill Support Oppose Tracking
Track with MyOC