Association of Corporate Counsel (ACC)

Welcome back Mr Bufithis







House cyber panel chair suggests a national data breach law

View original document | Send to colleague | Print | Suggest a topic (new)
Wildman Harrold Allen & Dixon LLP

USA
October 21 2009

Rep. Yvette Clarke, the Brooklyn, N.Y., Democrat who chairs the House Homeland Security Subcommittee on Emerging Threats, Cybersecurity and Science and Technology, says she hopes to hold hearings on what she calls the National Data Breach Law either later this year or in early 2010.    

Clarke envisions legislation allowing the federal government to regulate how the private sector retrieves, transmits, intercepts and stores data to battle the increasing problem of data breaches. In 2005, the Identity Theft Resource Center reported 157 breaches with 66.85 million records exposed. In 2009, through last Tuesday, the center reported 407 breaches and nearly 220.6 million records exposed.

Clarke wants the private sector involved in crafting the regulation of data, and envisions her panel holding a series of hearings to solicit the views of government officials, business leaders and academics. Clarke is sensitive to not hampering innovation, but creating regulations to protect data and systems from criminals and adversaries.

First, Clarke wants Congress to consider updating the 7-year-old Federal Information Security Management Act that regulates how the federal government secures its data and systems, believing that FISMA reform could provide a framework for wider data regulation that she is proposing.

Critics question the effectiveness of government regulation on the private sector, questioning the enforceability. "Like everything else, too much regulation is not helpful," Stanton Sloane, chief executive officer of the information services firm SRA International said. "First of all, too much regulation won't solve the problem. You can regulate whatever you want, but if people aren't able to comply with it or be knowledgeable enough to comply with it, it is kind of pointless."

Stay tuned for further coverage on the proposed data breach regulations.  

Popular related articles

  1. Circular beach towel's trademark is invalid (Kelley Drye & Warren LLP)

    In the late 1980s, Clemens Franek sought and received trademark registration status for his "radical" round beach towel.

  2. Western District of New York upholds non-compete and grants TRO (Seyfarth Shaw LLP)

    Plaintiff IDG USA, LLC (“IDG”), a Georgia company with its principal place of business in North Carolina, commenced an action against a former employee, Kevin J. Schupp (“Schupp”), a New York resident, alleging breaches of a Non-Compete Agreement, breach of a Confidentiality Agreement, unfair competition, and theft of trade secrets.

  3. Shutting down corporate pick-pockets (Gardere Wynne Sewell LLP)

    A 10-year employee accounting manager systematically transfers amounts via ACH to her personal checking account.

  4. Employer wins “cat's paw” case (Foley & Lardner LLP)

    On August 11, 2010, a federal court rejected a terminated employee's "cat's paw" argument.

  5. Massachusetts personnel records statute amended to require employers to notify employees when negative information is placed in personnel records (Goodwin Procter LLP)

    Massachusetts recently enacted an economic development statute which contains an important amendment to the Massachusetts Personnel Records Statute, G.L. c. 149, § 52C.

  1. Online ad network sued over tracking using flash cookies (Hunton & Williams LLP)

    On August 18, 2010, a complaint was filed in the U.S. District Court for the Central District of California, alleging that Specific Media, Inc. violated the Computer Fraud and Abuse Act, as well as state privacy and computer security laws, by failing to provide adequate notice regarding its online tracking practices.

  2. Information Commissioner offers guidance on school photos (Mills & Reeve LLP)

    The Information Commissioner has recently issued guidance, specifically aimed at Local Education Authorities and those working within the education sector, addressing the confusion surrounding the taking of photographs and videos in educational institutions.

  3. ID scanning and privacy issues: new guidelines (Blake Dawson)

    Increasingly, clubs and pubs are using technology to electronically capture identity information about their customers.

  4. HHS releases proposed changes to HIPAA privacy, security and enforcement rules (Baker Donelson Bearman Caldwell & Berkowitz PC)

    On July 14, 2010, Secretary Kathleen Sebelius of the United States Department of Health and Human Services (HHS) published notice in the Federal Register of proposed rulemaking1 aimed at "strengthening" the Health Insurance Portability and Accountability Act of 1996 (HIPAA) privacy, security and enforcement regulations (collectively referred to as the "HIPAA Rules") and as required by the Health Information Technology for Economic and Clinical Health Act (HITECH Act), which was enacted as a part of the American Recovery and Reinvestment Act of 2009.

  5. How secure is your customer data? (MacRoberts LLP)

    The Financial Services Authority ("FSA") has imposed a fine of £2.27 million on the UK branch of insurance company Zurich for loss of customer data.

  1. Can employers complete background checks without discriminating? (Wildman Harrold Allen & Dixon LLP)

    Title VII prohibits an employer from engaging in an employment practice that has an adverse impact on members of a protected class.

  2. Initial health care reform provisions to take effect in September 2010 (Wildman Harrold Allen & Dixon LLP)

    On March 23, 2010, President Barack Obama signed into law The Patient Protection and Affordable Care Act, and on June 1, 2010, signed the Health Care and Education Reconciliation Act.

  3. Final ICE rule issued on electronic I-9 form usage (Wildman Harrold Allen & Dixon LLP)

    The Department of Homeland Security’s Immigration and Customs Enforcement (“ICE”) recently issued its final rule amending regulations related to electronic I-9 forms.

  4. Financial overhaul legislation provides extensive new employee protections (Wildman Harrold Allen & Dixon LLP)

    President Obama signed the Dodd-Frank Wall Street Reform and Consumer Protection Act into law on July 21, 2010 (“Dodd-Frank Act”).

  5. Mexico enacts data privacy law (Wildman Harrold Allen & Dixon LLP)

    After nearly ten years of being held up in political wrangling, the Mexican federal legislature passed the "Federal Law Protecting Personal Data in Private Possession," effective July 6, 2010.

Most popular articles on Lexology

View original document | Send to colleague | Print

If you are interested in submitting an article to Lexology, please contact Andrew Teague at ateague@lexology.com.

© Copyright 2006-2010 Globe Business Publishing Ltd