To establish a national data breach notification standard, and for other purposes.
Personal Data Notification and Protection Act of 2017
This bill requires certain businesses that use, access, transmit, store, dispose of, or collect sensitive personally identifiable information to notify individuals whose information is believed to have been accessed or acquired through a discovered security breach. In addition, the businesses must meet specified requirements for notifying certain federal agencies, credit reporting agencies, and the media regarding a security breach. The bill also sets forth requirements for the notification process, exemptions from the requirements, and enforcement authorities for the Federal Trade Commission and the states.
Introduced in House
Introduced in House
Referred to the Committee on Energy and Commerce, and in addition to the Committee on the Judiciary, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned.
Referred to the Committee on Energy and Commerce, and in addition to the Committee on the Judiciary, for a period to be subsequently determined by the Speaker, in each case for consideration of such provisions as fall within the jurisdiction of the committee concerned.
Referred to the Subcommittee on Digital Commerce and Consumer Protection.
checking server…
Ask anything about this bill. The AI reads the full text to answer.
Enter to send · Shift+Enter for new line