Gautham Nagesh reports:
Senior Democrats on the Senate Commerce Committee introduced a bill on Thursday that would require businesses and nonprofits to implement strong security features in the event of a data breach.
Consumer Protection Subcommittee Chairman Sen. Mark Pryor (D-Ark.) and Commerce Chairman Sen. Jay Rockefeller (D-W.Va.) unveiled the Data Breach and Security Notification Act of 2010, which would require entities that collect personal information from consumers to implement “reasonable security policies and procedures” to protect their data.
[…]
Under the bill, organizations would have to notify every individual impacted by a data breach within 60 days. Affected consumers would be entitled to free consumer credit reports or credit monitoring services for two years and would be given instructions on how to request those services.
Read more on The Hill. Press releases from the Senators and a copy of the proposed law are not yet available online at the time of this posting.