All Information (Except Text) for S.583 - DATA Privacy Act116th Congress (2019-2020) |
|Sponsor:||Sen. Cortez Masto, Catherine [D-NV] (Introduced 02/27/2019)|
|Committees:||Senate - Commerce, Science, and Transportation|
|Latest Action:||Senate - 02/27/2019 Read twice and referred to the Committee on Commerce, Science, and Transportation. (All Actions)|
This bill has the status Introduced
Here are the steps for Status of Legislation:
- Passed Senate
- Passed House
- To President
- Became Law
There is 1 version of this bill. View text
Click the check-box to add or remove the section, click the text link to scroll to that section.
Titles Actions Overview All Actions Cosponsors Committees Related Bills Subjects Latest Summary All Summaries
Actions Overview (1)
|02/27/2019||Introduced in Senate|
02/27/2019 Introduced in Senate
All Actions (1)
|02/27/2019||Read twice and referred to the Committee on Commerce, Science, and Transportation.|
Action By: Senate
02/27/2019 Read twice and referred to the Committee on Commerce, Science, and Transportation.
|Committee / Subcommittee||Date||Activity||Reports|
|Senate Commerce, Science, and Transportation||02/27/2019||Referred to|
Subject — Policy Area:
One Policy Area term, which best describes an entire measure, is assigned to every public bill or resolution.
- Accounting and auditing
- Administrative law and regulatory procedures
- Civil actions and liability
- Computer security and identity theft
- Computers and information technology
- Consumer affairs
- Employee hiring
- Federal Trade Commission (FTC)
- Government employee pay, benefits, personnel management
- Inflation and prices
- Research administration and funding
- Right of privacy
- State and local government operations
Latest Summary (1)
Introduced in Senate (02/27/2019)
Digital Accountability and Transparency to Advance Privacy Act or the DATA Privacy Act
This bill establishes information security requirements for businesses that collect, process, store, or disclose information relating to at least 3,000 people in a 12-month period. The bill applies to information that may be linked to a specific individual or a device associated with a specific individual. It does not cover data related to employment or publicly available government records.
Specifically, covered businesses must
- provide consumers with accessible notice of the business’ privacy practices with respect to such information; and
- if meeting a certain revenue threshold, appoint a privacy officer to oversee compliance with the information privacy standards of this bill.
The bill further requires the Federal Trade Commission to promulgate rules requiring covered businesses to
- limit the purpose and amount of consumer data collection to reasonable business purposes, provide consumers with clear methods to opt-in and opt-out of such collection, and refrain from using such data for discriminatory purposes;
- provide consumers with a method to access, revise, transmit, and delete such collected information; and
- establish information security practices based on the sensitivity and level of identifiability of the collected data, risk of exposure of such data, widely-accepted practices of securing such data, and cost and impact of implementing such practices.
The bill further revises the National Science Foundation information security grants program to include research about methods to encrypt or remove identifiable elements from collected consumer data.