Database - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Database


Congress Nears Final Identity Theft Legislation



 By: Lisa Vaas
2005-07-21
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Database story.


  Table of Contents:
  1. Congress Nears Final Identity Theft Legislation
  2. ' Consumer Protection'

Rate This Article:
Poor Best
Congress Nears Final Identity Theft Legislation
( Page 1 of 2 )

News analysis: After input from industry, consumer groups and subcommittees, what will Congress spit out? Here's what a final federal law on identity theft would look like if privacy advocates and security experts had their say.Since the ChoicePoint headlines in February, the number of reported data breaches of personal information has exploded to the point that the tally now reaches a staggering 50,324,480 records exposed to potential theft and fraud.

The breaches have affected Congress as fertilizer to daylilies, with a new identity-theft law sprouting every few weeks, the most recent of which was introduced into the Senate last week.

The Identity Theft Protection Act, sponsored by Sen. Gordon Smith, R-Ore., and a slate of bipartisan supporters, is a bill that touches on data protection and safeguards, as well as data breach notification.

It joins a bumper crop: the SPY ACT (Securely Protect Yourself Against Cyber-Trespass), the SPYBLOCK (Software Principles Yielding Better Levels of Consumer Knowledge) bill, the Internet Spyware Prevention Act, and the ID Theft Notification Bill, to name a few.

Some have passed, while others have withered on the vine but might see their provisions resprout in the Smith/Nelson bill, as the Identity Theft Protection Act is also known.

Resource Library:
The act is scheduled for markup on July 28. Markup is expected to be delayed, but after markup, it will likely be the container for provisions from other proposed bills. The question is, after the bill is masticated by industry, consumer groups and committees, what will Congress spit out? If privacy advocates have their say, what will the final federal law look like?

What some privacy advocates most fear is that the product of Congress mulling will be a feeble version of stronger state laws—a feeble version that would then topple more vigorous laws.

"Were very interested to see that the state breach-notification laws—for example, the California state law—is not pre-empted by a weaker standard," said Pam Dixon, executive director of the World Privacy Forum, referring to California SB (Senate Bill) 1386, a law that went into effect in July 2003. The law requires that organizations experiencing security breaches notify those whose records have been exposed.

Its impossible to discern whether Californias law is preventing identity theft, of course, but notification has measurably worked in two areas, according to Joanne McNabb, chief of the California Office of Privacy Protection. First, it gives potential victims of identity theft an early warning so they can take preventive actions such as applying a fraud alert.

The second benefit of a breach-notification law such as Californias is that organizations that have felt its sting have since cleaned up their acts. McNabb cites two examples: The first had to do with blood-donation vans that were losing laptops.

She asked why the vans operators felt the need to collect Social Security numbers, and it turned out that this was an antiquated system left over from the days when most donations were done at hospitals that used the SSN as a patient ID number. The practice was then dropped.

A storm is brewing over whether to let organizations that encrypt data off the hook when it comes to breach notification. Click here to read more.

The next example is that of a state agency that lost records when a laptop was stolen from a car trunk. The agency went through notification, but weeks later, another laptop was stolen from the locked trunk of a car.

By this time, however, the agency had gotten its act together and encrypted data on laptops. Thus, it didnt have to notify anybody. "Thats an example of the other benefit of a good breach-notification law," McNabb said. "Its a very strong incentive to apply security measures to protect information."

Thats a strong law, and a good law, at work, and its this strength that privacy experts fear will be lost in whatever federal law comes out of Congress in the coming weeks. "If a federal law isnt at least as strong as a strong state law, were all in trouble," Dixon said.

Insofar as "we" refers to consumers, we might all be in trouble. The Smith/Nelson bill has been booted over to the House Subcommittee on Commerce, Trade and Consumer Protection.

Next Page: Hostile to consumer protection?





  Reader Comments: Congress Nears Final Identity Theft Legislation
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Database Articles          >>> More By Lisa Vaas
 


x}r㶲s\@♵MQGJɖlkmyYԩRQ$$1H.'ˮO7t%_&3m@h4I"f\8̢dw3齿K$wmL9P[ Ϡ^=WZj:@]0w2v=S;^6 \H|A 2wx@vDʒ 5Ǔ6>1=+SmL}F6\3meb ^Qk$ЁyG`nzN<)v)pcP @|2C(>r@ߨx pTƦ^¾R!UUlEhD!|x\'{軇dY u(lʛF[iki2pj9dF`VFoچs[={0q*sܼL훏 EU e*Gq7Z} m9yMS> Ees߈ecby1(ժ=TRJg3Bz3u7'Ke{#'kj{H _GtH W: -NZk_{}o "w󁭡43@_0FD=3cfI923< MH:ƜUņ]`)exN-$%/+_PePAM/g 5#t*\($ɛ!"ˆG9Cx,ʹcc[o".S4ipv]-7Du,.ɺ*35-wfxTw9qn?][wսu5O0,D#u|h*6l d (4(sw[LL)σh JC͋F0=2+?k6f(9N@tmSH|` )QiN3-mhZ1 5f:%6tq0xz[ dQJ$@!"5i]NP@Br68 -84rr4|?#!b\Jj2'9\t{B#;\~(Pύgr)b -xkb$d6g2KIMiG]W-&D7r"eL/G7Mᙚ&Z1oY*UuRC&G#S7a 3z {[gޣi K02ii3Ԑ(zɲE0sǞs,*m'ȓcQ2Gla挽 s>xFvGM- ͜6,'>!&B~`Z&4D 7q9k準I<9`*,q[rdžfXi8Õ=1q ؇é&9|YzI2ۿP.MMEc7˅L4kV*H(AX3b-y30筷 V挦M\XebʞZO%eXScXMϠD~w Lzb0qu/$1LaVQȚ='+JuѦɅi@s@M~N!V3pPU*@1"N9O5/V cG/3z>UF>1 $@jcTe2f MT_P-8uE% i4Q* Mܧh&L3wS'mS0$4`m\ 1H#0/`k .^@>kCK'"VcEsV-EAN-)o-gq0$ZcK& GpӞrVyCf?KPo?EjZXdžZQrTU߬L3no)'@S$f|ǁ3翼;q4McɗPz;̦[PC93O.S+ #.*#1_0kfW#SqP.'1c0].Q8)5fJ ޛyp䂲d3s' ]lW19L__c)>Luj}ɲIXё1kD {@nȵ( ?K[3^V< OP#zCؽLhBOuҜNYT>Ԋkεt)D n׃SZ`Sb/ J_+*ʚuZu4%mpH1)dzD4@+=q8bk tbk}rq@l%Rq݌Um"vzڀVIJhQ;_TM(7> 37m&mo^{yc˙yrN?dZp|bvrekPʷ"cfhsIt\Mecly@<犪=mA3SYdpXiϼZߺs lO>=r 52߼>p=Эt;G~;sֿLׂܱ RD7:PUL xg@5sDcC: ZNLƏu_ݯ`FOW}Hlw\K`巷*0'rR)Y-cx864g}֏^-,0t&]☺`|'Ge7UYrSO(Z7MbZ*BBЛgaC.JpimyB%3R8-ܛ`,@N|K!O]T0%erI8Mq {/;CK,%.@^ذy?'l{H #? *7~.YSHC$h Xk۽ ~PkK $q)QUija{I6@h$K~O}y9rg| 8}_UwA;g( z݇?*H LІ_eR>$jxztْ:6?eB*{fB, 8Iq۵!3'^lY [{l:5/z~;oC;"$;9 y}ڹ/vwϻ(!9\dcx(`F!y9<`AN*{ݼO8>m48T6M"zk쇤ҝa3+vH]!Br_׭5't^t&֒mUq!qlPõhLخ;+ ؿ֭Ě_fbB!I|FهA(l1@+JF:HvZfp=6"B4X 1tJ zE/b)%Q\(둞OY[}ܽnr3 lo}AFNd^vZ-[I7S+d$ #=]/8ʚ=?UVOju>!+Tr㿜Y^$M aM\q} zs@&aP;PEZ3pq*hwu?{hQP]Qz AEvg~愜7o;z{w7Ŗ`4tͥvV<}i?v;}iamơ8 0Nt,$$yEQj/g3$]Bn':Lzd ,F} x3D?.yi1>R3=Ӈ| >y~}q.~(dR.o]ZtGqD1&x/N)Eju@OK4{Y[ QKwv{쬐kiXxlQQ;Wg _O}rmG.X r?4hgazc{ƹ=39#@*yh\]s71&pRx666y)1hTRwo7{hn3d⫆܆~@z'ziOXW+O2?'ʫqFԱQo*o_O6oNƂ1f̙ʈ1Wcך*n1 |cI5%&p!$ qNU{r+t7~=aɸ.hE%͖xLL._&p65xfVXCHsQWRQɇ&L?ulsp~r+ֻ ]1#Xkn̓:ӏa_1rn9?Uyty7? M<53wMXåmnc/ )yǑ˚ٖ[Բjj/G]:]'&|v;#Ft<<#:pwO+7GΤWP/>ر@a|ra>PCr#6^"4w%v?CyQbZrr N¼͹+>:9K>x9 ;)Ĝi p7S1azJ(r@T́#I'0=H}ILN0_\CTdAWAgqZ 9RY!-P2Pq Y: ) .k^B 8ґCV}`QŘS?'IUB/VqKKIRec&-%SREWH+ym "[nc p@MR5^$PӚl [MEˉQ9itKtJH@ohd/caԗ5z"λ8X,j0ɎV Ыથp5Q8菆y zS„g1d ؕH XPᛧ~ھI館x$F(@Y&DCY?K[Y阶 TGASBfgK ʚt:%uh0G霎Mb( x@|I}6G<# I[i>R |`#BĖnlY`UȻwePT}]]Ϡ+؄qR aR}-y@Mbk-R04!B8TA%=K^NOر# 2.{ՠ1JFg~LH2 wF'aqJt]ݨ{MrmEUPM*,{sXM}PntTL184W})BJvC$槧 &0xZהDD=jCczzALʐB$ KVRbE }[~FcjLRBb ёtjx k٦Ki<2GpH I Jhl˩M)HJeS">&)t qzF5+<*/,)$8K=̗4sqn;Ʌ6~Nk'Eo/1"e%R[Gl,c ̨ƨ)Fooooͯo,֊훱z 3gZ9selgReH5,eRs E;qn`IZyJXShrOF@ta>76κ!s)\I8Á{x0â, Ĝ'](RiPA^3!a|Yv;L8CBq/ ِ2_ ʢGKԝ/9@RRxfr$+l_!!3xaH  y"VO.!e^[ }z.:Pdb_&&,JD%xzk3,cnloC2xytAHk9sJxa=0`Ϧ  FPȋ`gPnHP$Wڶ?󀙚^h| ƿ]t>bo"A$H"aI[~oL= ]K 5QxCu[f>!wi0S)FX3M}THM^ a`H002vhX 1ض:wI'2ffff|6OT޶3L,6ڰ8]{A@7>?,} X͒)SϴY/eQ3~ԛ8!@Boo7yҕ`66U\٩ccP֏xT.Gy5y 1 ^mzd oB9Tۆ9ָn߰X?̀V-c耡ךm#͌3}Ng#M$VP5sGg?`B|GzU O:}"bnƆY)vhsbSI5^9r<5[֓HTf; hv6˗tVclkmTara pWؾPs&`fXVG;IQԩz\\eQחVKc:wt)TP3˫H nEhw>EQ݃[y{¡Yj,& TXKE`+┱fnea)3_EFHTT"6HKɻt @{aD M j>c1?}riQp m#K"< MZAܓ佧a47xb%6Y.#;'(/dE P&‹wSMm!^kwT18{7~!{=Wln gx\sZ5Mvu`qV>F!i3Ooq'2`A0 06$,S;fG)2E[ AoۺpoWo䭼ͽd?BSD!]HB~0~^Y j~h!<8߸%ɸ)x)PS\(n^۽q#H| 5D|양w^گ֌rc] oȩ*r~;&-^%8IuYŢP8Q9#$9p0WLXD?߉",pKR8Z䀲eHy+A#졐=BH 0+AX^q'Q3"X~4#eT[S]̉7T,tDVj9E NEV!oL"E(wy0pD^dbɠ9x p#(XҼ񦚵0`XbSYYh S!icb9}¾s\ { ]N1xy[Ò+5&L6P:qV6'f/,^Ou$ζy)HeTUR=ok5GTXQap# &.`GV((cX ~z/[7x}ob>>-^a̷vᮥjbgg+hҵτx&sjW  @WHu#nA',4t:#E+v"mB]s˩^@yj$Z(#?bS~碷轋΂`Wlm۲Tm4΅towy$&n蜜if@3~: Rp`6b~u9lZqIj> 1XrAu1P]3$|ɈVs!L.~_%ʘ_>Q@O@L5F H 47LCP <y݋OR2q`Yv g6rS:ᘭ#+N1HSv CVo>^_ "1";'0 斩eV-1)kMQ(Vpxi|wv`nOKZ&9a kE$73F3%HbE!*"[36#&lMQxNނbѽ=y|v#@ l!1g昑Gi>'_G~H-*A/ 6qY@y#DLMzDG׆(c^bJ ͕$um3 Mi0q@sXc- .E.[a8x5aPOnNc@ S3 f;.9t:W =1x{C` f>scW[7';ΥIEVz|L]ƒ $BѽӜp6@_7=}?݉2}xИ1_ջPSr%Tk:(!xW`ŊRN/|&O.dYͬ(f+cǯ"\hiBR, ?$5GF쌆=(dԵ=kjڟh`WW_I4uMzzם~{I<}uh[8Z=V9궾wt.Wם~qb}v>HUuk+Lie(AN.m(T{X /NdL,rԗ,xjy^/>*U`G͞? NL,a^e5DU@2:n^y]c襧 j]{=5 YWG>;FS r>rT;h) чzQc Cxk{5BJy@!cF/KF5_O?n63һHGJOoZcH?^~9)4 NqYith_'}h\fC;5>2ҿ@<>v_d_d^ds EF/>/2">G/3?gAYF? ~{1?s w1~]h7]? ͐/W@Wq2_\gO诟AA֧A_!sV:sF>>goҁ~o2ɨ&s$eC._Op2˹Q+ /Wa uyR zvAX^eR5 ௗߗ}dlҹ: q)•({^U^xڞjVq뭦Mn@KG{2Ph +[y@J s hxVYdRd byXe?~V,$=)>7懤Jx˕ո]@&JػR7e[M'jikr(s3gqo{dc3,Eka7'"%YØ/ܺ CzˆnQ'Lg~4'ԊblOAptDs9MA7#0[W_wx[ИrF֢@)+zykLg4?jnAm=!ꠂ/烫i}gz=Y<+q4 9uu8i$X{H&''}p)BcظkjXj3l1@Щ |\hn2%3!U{TxP eţhx`X]L+&lybm*bbrށ29.V%ɱz.yYB7ysb9HC/9gAkj!tQ4w[?SpN&/L/uttxnǍ7]b2tzJ 1)cƠ}Q^ IH,'c@ԯaXmt RVWB&+3Σ8x)̆I+76$x(|v@7>cc6H_,mgrlCkAW6u;L[Naŗ@@rĶねkՌص_2^]g|1[C8$"t<#zOb\WvBaIg iص]cG 6NzsԄ8=8G%(h+PTE0P;Cb Sţ4H :BVE-J{&W3v,}x{b&zU h$.7="VDwΆlOEc{]/I)H[aD6Nwm N=Y,~ V_z{5B?}},[@=gm)@AikA/?tI3۱x&%mY $v|.yzchFʒ6\J^T~3(HxHqp/>av؆|%Kg ϻ9e B$u@' ߆ϨfC~Xfxٲq1ebZ!qmFh5Z@#5E`m4aeh # n=ձ wO 7G=Ƌrx{Kkp$ d|_ODxƪ~axh}F=gshxG& $߀*04o 9@+7A{.HJ B Qgn`Cl .*OYF hWa!e;6KLPO3 &glB p#!*x9Na^|˼+AўXn0w6LOnv/-(G,9LRX}P/(NMes{Z%n"_HҶ›v*|Xc 0,*09GE6<]܈xj{ͺE_g fkOdxXݫ8mہR#nȅȰ-` jk7EmYtA<۶wy׶Ldؖc׶<Xè&vf$оs,alX oV|޸+no=Јe6{0^N60N&m+Lȏ,, [Ze']Z.hrE"Ҏ )ؑ~9'mj fY1[Rj8gn~ӧf0'¿Ersb㡲_VvLʙcSּA1ylT$ܨC=#Ay$O>jA@`U\3|fWjЮ3q-M'C᳋q0ƕ"DM3z(ͦ,1F. A(ixzT<1@TF_E@ E7d!VĄb\RJfrmuck Q}ɦNԌnBcr kL$8 33o|'/|A,rs*]x7NbŒ biSN~ p6JL? 딌9M\"GZ/%!z9S4զr"1>_֊>VMظӍ/2a-d4džHkcmjֹ19)