Senate Committees Hold Data Security Hearings

Feb 4, 2014

Reading Time : 2 min

By: Francine E. Friedman, Matthew C. Thomas (Senior Public Policy Specialist)

On Tuesday, the Senate Judiciary Committee held a hearing titled “Privacy in the Digital Age: Preventing Data Breaches and Combating Cybercrime.” The Committee heard from Deputy Special Agent in Charge Noonan and FTC Chairwoman Edith Ramirez, who both offered testimony similar to that of the previous day. The Judiciary Committee also received testimony from representatives from Target and Neiman Marcus, retailers who recently suffered major data breaches and the theft of customer payment information. Both witnesses offered their apologies to their customers and described how hackers had infiltrated their payment systems and installed malicious software to obtain customer payment information. Each retailer witness also explained the efforts they made to notify their customers and offer services such as free credit monitoring. The hearing included testimony from Mythili Raman, Acting Assistant Attorney General for the U.S. Department of Justice, who also called for a uniform breach notification standard. Raman also urged the committee to review and update the Computer Fraud and Abuse Act of 1986. Again, at the Judiciary Committee hearing, there was significant discussion regarding the move to “chip and PIN” payment systems. Chairman Patrick Leahy (D-VT) and Ranking Member Chuck Grassley (R-IA), sponsors of data security and breach notification legislation, had numerous questions for the retailer witnesses pertaining to the on-going investigations, as well as to how and when they notified customers of the breaches.

Witnesses from security firms, including Symantec, pointed to the Target and Neiman Marcus breaches as examples of the rising threat of data breaches. They argued that any federal standards for data security should be flexible in order to allow for innovation, and that best practices or guidelines should be developed through a stakeholder input process that allows for collaboration between companies, consumers and law enforcement.

In general, both hearings highlighted the rising threat of cyber crime and the need for federal data security and breach notification standards. Many senators on both committees were eager to make clear that while they expect retailers and financial institutions to take appropriate measures to secure their customers’ information and to promptly notify consumers of any breaches, the companies themselves are also victims of cyber crimes, and that private industry, government and consumers must work together to prevent such breaches in the future.

The House Energy & Commerce Committee will hold a hearing on Wednesday, February 5, 2014 entitled “Protecting Consumer Information: Can Data Breaches Be Prevented?”  The hearing will feature many of the same witnesses from the Senate hearings.

Share This Insight

Previous Entries

Akin Deal Diary

April 12, 2023

Read More

Akin Deal Diary

2022-12-15

On December 14, 2022, the Securities and Exchange Commission (SEC) adopted amendments regarding Rule 10b5-1 insider trading plans and related disclosures. The amendments aim to strengthen investor protections concerning insider trading and to help shareholders understand when and how insiders are trading in securities for which they may at times have material nonpublic information (MNPI). In light of these amendments, issuers should review and revise, if needed, their insider trading policies and equity grant policies.

Read more.

...

Read More

© 2024 Akin Gump Strauss Hauer & Feld LLP. All rights reserved. Attorney advertising. This document is distributed for informational use only; it does not constitute legal advice and should not be used as such. Prior results do not guarantee a similar outcome. Akin is the practicing name of Akin Gump LLP, a New York limited liability partnership authorized and regulated by the Solicitors Regulation Authority under number 267321. A list of the partners is available for inspection at Eighth Floor, Ten Bishops Square, London E1 6EG. For more information about Akin Gump LLP, Akin Gump Strauss Hauer & Feld LLP and other associated entities under which the Akin Gump network operates worldwide, please see our Legal Notices page.