S. 1178 (110^th): Identity Theft Prevention Act

Introduced:: Apr 20, 2007 (110^th Congress, 2007–2009)
Sponsor:: Sen. Daniel Inouye [D-HI]
Status:: Died (Reported by Committee)

The bill’s title was written by the bill’s sponsor. S. stands for Senate bill.

Overview
Summaries
Related
Citations

Status

This bill was introduced on April 25, 2007, in a previous session of Congress, but was not enacted.

Progress

Introduced	Apr 20, 2007
Referred to Committee	Apr 20, 2007
Reported by Committee	Apr 25, 2007

Cosponsors: 4 cosponsors (2R, 2D) (show)

Pryor, Mark [D-AR]

Smith, Gordon [R-OR]

Stevens, Ted [R-AK]

Nelson, Bill [D-FL]

(joined Apr 24, 2007)

Committees

Senate Commerce, Science, and Transportation

The committee chair determines whether a bill will move past the committee stage.

Full Title: A bill to strengthen data protection and safeguards, require data breach notification, and further prevent identity theft.

Summary: No summaries available.

Text

Read Bill Text »

Last updated Dec 05, 2007.
52 pages

Primary Source

View on THOMAS (The Library of Congress)

GovTrack gets most information from THOMAS, which is updated generally one day after events occur. Activity since the last update may not be reflected here.

Citation

Click a format for a citation suggestion:

Our Summary
Library of Congress
House Republicans
House Democrats

GovTrack’s Bill Summary

We don’t have a summary available yet.

Library of Congress Summary

The summary below was written by the Congressional Research Service, which is a nonpartisan division of the Library of Congress.

12/5/2007.

Section 2 -

Requires any commercial entity or charitable, educational, or nonprofit organization that acquires, maintains, or uses sensitive personal information (covered entity) to develop, implement, maintain, and enforce a written program, containing administrative, technical, and physical safeguards, for the security of sensitive personal information it collects, maintains, sells, transfers, or disposes of.

Defines "sensitive personal information" as an individual's name, address, or telephone number combined with at least one of the following relating to that individual:

(1) the social security number or numbers derived from that number;

(2) financial account or credit or debit card numbers combined with codes or passwords that permit account access, subject to exception; or

(3) a state driver's license or resident identification number.

Section 3 -

Requires a covered entity: (1) to report a security breach to the Federal Trade Commission (FTC); (2) if the entity determines that the breach creates a reasonable risk of identity theft, to notify each affected individual; and (3) if the breach involves 1,000 or more individuals, to notify all consumer reporting agencies specified in the Fair Credit Reporting Act.

Section 4 -

Authorizes a consumer to place a security freeze on his or her credit report by making a request to a consumer credit reporting agency.

Prohibits a reporting agency, when a freeze is in effect, from releasing the consumer's report for credit review purposes without the consumer's prior express authorization.

Provides for freeze removal and suspension, limits related fees, and sets forth other security freeze requirements.

Exempts from certain provisions of this Act:

(1) a consumer credit reporting agency that acts only as a reseller of credit information and does not maintain a permanent database of credit information;

(2) check services or fraud prevention services companies; and

(3) deposit account information service companies.

Section 5 -

Requires: (1) the establishment of the Information Security and Consumer Privacy Advisory Committee; and (2) a related crime study and report, including regarding the correlation between methamphetamine use and identity theft crimes.

Section 8 -

Treats any violation of this Act as an unfair or deceptive act or practice under the Federal Trade Commission Act. Requires enforcement under other specified laws. Allows enforcement by state attorneys general. Preempts state laws requiring notification of affected individuals of security breaches. Preempts state laws relating to the use of social security numbers.

Section 11 -

Prohibits, subject to exception, a covered entity from soliciting a social security number from an individual unless there is a specific use of that number for which no other identifier can reasonably be used.

Prohibits the display of social security numbers on identification cards commonly provided to employees, faculty, staff, or students and on state driver's licenses.

Amends title II (Old Age, Survivors and Disability Insurance) (OASDI) of the Social Security Act to prohibit federal, state, and political subdivision governmental entities and their agents from using prisoners in a way that would allow the prisoners access to other individuals' social security numbers.

Makes it unlawful to sell, purchase, provide, or display a social security number to the general public or to obtain or use any individual's social security number for the purpose of locating or identifying the individual with the intent to physically injure or harm the individual or for the purpose of using the individual's identity for any illegal purpose, subject to exceptions, including sales or displays of such numbers for the purposes of national security, public health or safety, and locating abducted children.

Section 12 -

Requires each U.S. agency to: (1) develop, implement, maintain, and enforce a written program for the security of sensitive personal information the agency collects, maintains, sells, transfers, or disposes of; (2) use due diligence to investigate any suspected breach of security affecting sensitive personal information; and (3) notify each affected individual after a breach.

Section 14 -

Authorizes appropriations.

House Republican Conference Summary

The summary below was written by the House Republican Conference, which is the caucus of Republicans in the House of Representatives.

No summary available.

House Democratic Caucus Summary

The House Democratic Caucus does not provide summaries of bills.

So, yes, we display the House Republican Conference’s summaries when available even if we do not have a Democratic summary available. That’s because we feel it is better to give you as much information as possible, even if we cannot provide every viewpoint.

We’ll be looking for a source of summaries from the other side in the meanwhile.

The bill contains the following citations to other parts of U.S. law:

United States Code

The United States Code is the compilation of permanent laws enacted by Congress. Temporary and other non-permanent laws do not appear in the United States Code. (About half of the United States Code is the law itself, called positive law. The other half is merely a compilation of the laws but has no legal significance.)

Title 5: GOVERNMENT ORGANIZATION AND EMPLOYEES
Part I: THE AGENCIES GENERALLY
Chapter 5: ADMINISTRATIVE PROCEDURE
Subchapter II: ADMINISTRATIVE PROCEDURE
Section 551: Definitions
Section 553: Rule making
Title 12: BANKS AND BANKING
Chapter 6: FOREIGN BANKING
Subchapter I: ESTABLISHMENT BY NATIONAL BANKS OF FOREIGN BRANCHES AND INVESTMENTS IN BANKS DOING FOREIGN BUSINESS
Section 601: Authorization; conditions and regulations
Subchapter II: ORGANIZATION OF CORPORATIONS TO DO FOREIGN BANKING
Section 611: Formation authorized; fiscal agents; depositaries in insular possessions
Chapter 14: FEDERAL CREDIT UNIONS
Section 1751: Short title
Chapter 16: FEDERAL DEPOSIT INSURANCE CORPORATION
Section 1818: Termination of status as insured depository institution
Title 15: COMMERCE AND TRADE
Chapter 2: FEDERAL TRADE COMMISSION; PROMOTION OF EXPORT TRADE AND PREVENTION OF UNFAIR METHODS OF COMPETITION
Subchapter I: FEDERAL TRADE COMMISSION
Section 41: Federal Trade Commission established; membership; vacancies; seal
Section 57a: Unfair or deceptive acts or practices rulemaking proceedings
Chapter 2B: SECURITIES EXCHANGES
Section 78a: Short title
Chapter 2D: INVESTMENT COMPANIES AND ADVISERS
Subchapter I: INVESTMENT COMPANIES
Section 80a-1: Findings and declaration of policy
Subchapter II: INVESTMENT ADVISERS
Section 80b-1: Findings
Chapter 41: CONSUMER CREDIT PROTECTION
Subchapter III: CREDIT REPORTING AGENCIES
Section 1681: Congressional findings and statement of purpose
Section 1681a: Definitions; rules of construction
Section 1681b: Permissible purposes of consumer reports
Section 1681e: Compliance procedures
Chapter 94: PRIVACY
Subchapter I: DISCLOSURE OF NONPUBLIC PERSONAL INFORMATION
Section 6801: Protection of nonpublic personal information
Section 6802: Obligations with respect to disclosures of personal information
Chapter 96: ELECTRONIC SIGNATURES IN GLOBAL AND NATIONAL COMMERCE
Subchapter I: ELECTRONIC RECORDS AND SIGNATURES IN COMMERCE
Section 7001: General rule of validity
Title 18: CRIMES AND CRIMINAL PROCEDURE
Part I: CRIMES
Chapter 47: FRAUD AND FALSE STATEMENTS
Section 1028: Fraud and related activity in connection with identification documents, authentication features, and information
Title 42: THE PUBLIC HEALTH AND WELFARE
Chapter 7: SOCIAL SECURITY
Subchapter II: FEDERAL OLD-AGE, SURVIVORS, AND DISABILITY INSURANCE BENEFITS
Section 405: Evidence, procedure, and certification for payments
Title 47: TELECOMMUNICATIONS
Chapter 5: WIRE OR RADIO COMMUNICATION
Subchapter I: GENERAL PROVISIONS
Section 151: Purposes of chapter; Federal Communications Commission created