New US legislation to force companies to protect data and report breaches

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

"Castle said his legislation would require that all businesses handling
sensitive information such as Social Security, driver's license or credit
card numbers in combination with personal data such as names and addresses
must "secure" that data. This requirement echoes those that many state
governments have enacted."

"The measure would also require "prompt investigation of breaches," in which
sensitive data may have been compromised, and companies would have to
"notify business partners, law enforcement and functional regulators right
away," Castle said. Businesses that experience breaches would also be
required to offer free credit-monitoring services at their expense."


Site Timeline