Download Locations:
Summary:
During the First Session of the 110th Congress, three data security bills were reported favorably out of Senate committees -- S. 239 (Feinstein), a bill to require federal agencies, and persons engaged in interstate commerce, in possession of data containing sensitive personally identifiable information, to disclose any breach of such information; S. 495 (Leahy), a bill to prevent and mitigate identity theft, to ensure privacy, to provide notice of security breaches, and to enhance criminal penalties, law enforcement assistance, and other protections against security breaches, fraudulent access, and misuse of personally identifiable information; and S. 1178 (Inouye), a bill to strengthen data protection and safeguards, require data breach notification, and further prevent identity theft. Other data security bills were also introduced including S. 806 (Pryor), S. 1202 (Sessions), S. 1260 (Carper), S. 1558 (Coleman), H.R. 516 (Davis), H.R. 836 (Smith), H.R. 958 (Rush), H.R. 1307 (Wilson), H.R. 1685 (Price), and H.R. 2124 (Davis). This report discusses the core areas addressed in federal legislation. For related reports, see CRS Report RL34120, Information Security and Data Breach Notification Safeguards, by Gina Marie Stevens; CRS Report RS20185, Privacy Protection for Customer Financial Information, by M. Maureen Murphy. Also see the Current Legislative Issues web page for "Personal Privacy Protection and Data Security" available at [http://www.crs.gov]. This report will be updated as warranted.
