Will companies start being held legally and financially accountable for sweeping data breaches under the rug?
Clearly, something must be done. We just need a version of the Data Security and Breach Notification Act that can be agreed upon by legislation.
A Senate bill that would make it a crime – punishable by up to five years in prison – for companies to knowingly conceal a breach of customer information has been re-introduced after failing to pass in 2015. Senator Bill Nelson (D-FL), the top Democrat on the Senate Commerce Committee, re-introduced the bill on Thursday. He first gave this a go in 2015, when his was one of several bills put forward to protect customers from leaks. Nelson tried to pass the bill, called the Data Security and Breach Notification Act, during the last session. The 2015 attempt failed when the Senate split over concerns regarding privacy and potential over-regulation. There were good reasons to shoot it down then, and there well might be good reasons to shoot it down this time around.