Senator Leahy has introduced the Personal Data Privacy and Security Act of 2011. I haven’t had time to read it yet, but just skimming it, I some good provisions in there, but I also see two immediate concerns: 1. It appears to apply only to electronic data (not paper records), and 2. The definition of…
Category: Legislation
Sony PlayStation hacks show need for data breach disclosure laws
Lisa Banks reports: The repeated hacking of Sony’s PlayStation Network hack has demonstrated the need for Australia to adopt mandatory data breach disclosure laws, a local security director has claimed. While the PlayStation Network was back up and running for Australian users today, director of Clearswift, Phil Vasic, said mandatory disclosure laws would help prevent…
Lawmakers Question Sony, Epsilon on Data Breaches
Grant Gross reports: Recent data breaches at Sony’s PlayStation Network and at e-mail service provider Epsilon will lead to legislation focused on improving cybersecurity at U.S. companies, the chairwoman of a U.S. House of Representatives subcommittee said Thursday. Representative Mary Bono Mack, a California Republican, said she will soon introduce legislation focused on ensuring that…
This morning in Congress: “Sony and Epsilon: Lessons for Data Security Legislation”
The House Energy & Commerce Committee Subcommittee on Commerce, Manufacturing, and Trade has scheduled a hearing on Thursday, June 2, 2011, in 2123 Rayburn House Office Building. The hearing, entitled “Sony and Epsilon: Lessons for Data Security Legislation,” will begin 15 minutes after the conclusion of the full committee markup. Background Memo Witness List Jeanette…
House Energy and Commerce Committee will focus on data security and digital privacy
Gautham Nagesh reports: The House Energy and Commerce Committee announced a comprehensive review of data security and eletronic privacy issues on Wednesday, beginning with Thursday’s hearing on data breaches at Sony and Epsilon. The announcement signals the committee is likely staking out its place for the upcoming debates on comprehensive cybersecurity and privacy legislation, both…
Three National Data Breach Notification Legislative Proposals Issued
Craig Hoffman writes: So far this month, three legislative proposals containing a national data breach notification requirement have been issued. On May 4, Rep. Bobby L. Rush (D-Ill.) reintroduced the Data Accountability and Trust Act. On May 11, Rep. Cliff Stearns (R-Fla.) introduced the Data Accountability and Trust Act (DATA) of 2011. One day later, the White…