Reporting Data Breaches: Is Federal Legislation Needed to Protect Consumers? Hearing Before the Subcommittee on Commerce, Manufacturing, and Trade of the Committee on Energy and Commerce, House of Representatives, One Hundred Thirteenth Congress, First Session, July 18, 2013   [open pdf - 3MB]

This is from the July 18, 2013 hearing, "Reporting Data Breaches: Is Federal Legislation to Protect Consumers?," before the U.S. House of Representatives Committee on Energy and Commerce, Subcommittee on Commerce, Manufacturing, and Trade. From the opening statement of Lee Terry: "In today's economy nearly everyone leaves a digital footprint. Even if you made a concerted effort to avoid smart phones, laptops, and social media, you would have a difficult time keeping your personal information from being held in an electronic database somewhere. Consumers should have the peace of mind that their data is protected in a responsible way. But with all types of nefarious activities online, so-called 'hacktivists' are finding new ways to steal data. So in the event that our personal data becomes exposed, we need to be able to trust that the companies in possession of our data will notify us of the exposure. And certainly it is in those companies' best interest to notify promptly and clearly in order to preserve a trusting relationship with consumers. Given these considerations, the question before us is: What are the rules of the road for companies that experience a breach in their data stores? Currently, the laws that govern data breach notification are a patchwork of state and territory-specific statutes. Unfortunately, they tend to differ from each other in many ways. For example, while a number of states have adopted a common definition of 'personal information,' even more states have adopted alterations to that definition, and those vary unpredictably. This definition is important because it triggers the duty to notify of a breach." Statements, letters, and materials submitted for the record include those of the following: Lee Terry, Dan Liutikas, Debbie Matties, Jeff Greene, Kevin Richards, Andrea M. Matwyshyn, and David Thaw.

Report Number:
Serial No. 113-71; Serial Number 113-71
Public Domain
Retrieved From:
Government Printing Office: http://www.gpo.gov/
Media Type:
Help with citations