Data Security Breaches: Context and Incident Summaries (CRS Report for Congress)
Premium Purchase PDF for $24.95 (78 pages)
add to cart or
subscribe for unlimited access
Pro Premium subscribers have free access to our full library of CRS reports.
Subscribe today, or
request a demo to learn more.
| Release Date |
Revised May 7, 2007 |
| Report Number |
RL33199 |
| Report Type |
Report |
| Authors |
Rita Tehan, Knowledge Services Group |
| Source Agency |
Congressional Research Service |
| Older Revisions |
-
Premium Revised March 21, 2007 (74 pages, $24.95)
add
-
Premium Revised Jan. 29, 2007 (71 pages, $24.95)
add
-
Premium Revised Sept. 28, 2006 (55 pages, $24.95)
add
-
Premium Dec. 16, 2005 (32 pages, $24.95)
add
|
Summary:
Personal data security breaches are being reported with increasing regularity. Within the past few years, numerous examples of data such as Social Security, bank account, credit card, and driver's license numbers, as well as medical and student records have been compromised. A major reason for the increased awareness of these security breaches is a California law that requires notice of security breaches to the affected individuals. This law, implemented in July 2003, was the first of its kind in the nation.
State data security breach notification laws require companies and other entities that have lost data to notify affected consumers. As of January 2007, 35 states have enacted legislation requiring companies or state agencies to disclose security breaches involving personal information.
Congress is considering legislation to address personal data security breaches, following a series of high-profile data security breaches at major financial services firms, data brokers (including ChoicePoint and LexisNexis), and universities. In the past three years, multiple measures have been introduced, but to date, none have been enacted.
This report will be updated regularly.
