GovTrack’s Bill Summary
We don’t have a summary available yet.
H.R. 2577 (112th): SAFE Data Act
- Introduced:
- Jul 18, 2011 (112th Congress, 2011–2013)
- Sponsor:
- Rep. Mary Bono Mack [R-CA45]
- Status:
- Died (Referred to Committee)
The bill’s title was written by the bill’s sponsor. H.R. stands for House of Representatives bill.
- Full Title
To protect consumers by requiring reasonable security policies and procedures to protect data containing personal information, and to provide for nationwide notice in the event of a security breach.
- Summary
-
No summaries available.
- Text
-
Last updated Jul 18, 2011.
32 pages
- Primary Source
-
View on THOMAS (The Library of Congress)
GovTrack gets most information from THOMAS, which is updated generally one day after events occur. Activity since the last update may not be reflected here.
- Citation
-
Click a format for a citation suggestion:
Library of Congress Summary
The summary below was written by the Congressional Research Service, which is a nonpartisan division of the Library of Congress.
7/18/2011--Introduced.
Secure and Fortify Electronic Data Act or the SAFE Data Act - Requires the Federal Trade Commission (FTC) to promulgate regulations requiring any person engaged in interstate commerce that owns or possesses data containing personal information to establish and implement reasonable security policies and procedures to treat and protect such information.
Requires such regulations to include specified policies and procedures, including:
(1) a process for identifying and assessing vulnerabilities in the system, and
(2) a process for taking preventive and corrective action to mitigate such vulnerabilities.
Requires a person covered by this Act to establish a plan and procedures for minimizing the amount of personal information maintained.
Exempts services providers from such requirements for any electronic communication by a third party that is transmitted, routed, or stored in intermediate or transient storage by the provider.
Establishes notification procedures in the event of a breach of security of any system that contains personal information.
Allows an exemption from notification requirements if a person subject to this Act determines that there is no reasonable risk of identity theft, fraud, or other unlawful conduct.
Creates a presumption that no reasonable risk of such conduct exists following a breach of security if the data containing personal information is unusable, unreadable, or indecipherable to an unauthorized person by encryption or other security technology that is generally accepted by experts in the information security field.
Directs a person subject to this Act to provide a credit report and credit monitoring if certain identifying information is breached.
Sets forth provisions regarding enforcement of this Act by the FTC and by state attorneys general.
Establishes civil penalties for violations.
Exempts from the requirements of this Act any person subject to the information security requirements of the Health Insurance Portability and Accountability Act (HIPAA) or the Gramm-Leach Bliley Act.
House Republican Conference Summary
The summary below was written by the House Republican Conference, which is the caucus of Republicans in the House of Representatives.
No summary available.
House Democratic Caucus Summary
The House Democratic Caucus does not provide summaries of bills.
So, yes, we display the House Republican Conference’s summaries when available even if we do not have a Democratic summary available. That’s because we feel it is better to give you as much information as possible, even if we cannot provide every viewpoint.
We’ll be looking for a source of summaries from the other side in the meanwhile.
The bill contains the following citations to other parts of U.S. law:
United States Code
The United States Code is the compilation of permanent laws enacted by Congress. Temporary and other non-permanent laws do not appear in the United States Code. (About half of the United States Code is the law itself, called positive law. The other half is merely a compilation of the laws but has no legal significance.)
- Title 5: GOVERNMENT ORGANIZATION AND EMPLOYEES
- Part I: THE AGENCIES GENERALLY
- Chapter 5: ADMINISTRATIVE PROCEDURE
- Subchapter II: ADMINISTRATIVE PROCEDURE
- Section 553: Rule making
- Title 15: COMMERCE AND TRADE
- Chapter 2: FEDERAL TRADE COMMISSION; PROMOTION OF EXPORT TRADE AND PREVENTION OF UNFAIR METHODS OF COMPETITION
- Subchapter I: FEDERAL TRADE COMMISSION
- Section 41: Federal Trade Commission established; membership; vacancies; seal
- Section 44: Definitions
- Section 45: Unfair methods of competition unlawful; prevention by Commission
- Section 57a: Unfair or deceptive acts or practices rulemaking proceedings
- Chapter 94: PRIVACY
- Subchapter I: DISCLOSURE OF NONPUBLIC PERSONAL INFORMATION
- Section 6801: Protection of nonpublic personal information
- Section 6805: Enforcement
- Chapter 96: ELECTRONIC SIGNATURES IN GLOBAL AND NATIONAL COMMERCE
- Subchapter I: ELECTRONIC RECORDS AND SIGNATURES IN COMMERCE
- Section 7001: General rule of validity
- Title 42: THE PUBLIC HEALTH AND WELFARE
- Chapter 7: SOCIAL SECURITY
- Subchapter XI: GENERAL PROVISIONS, PEER REVIEW, AND ADMINISTRATIVE SIMPLIFICATION
- Part C: Administrative Simplification
- Section 1320d: Definitions
- Chapter 156: HEALTH INFORMATION TECHNOLOGY
- Subchapter III: PRIVACY
- Section 17921: Definitions
- Title 47: TELECOMMUNICATIONS
- Chapter 5: WIRE OR RADIO COMMUNICATION
- Subchapter V-A: CABLE COMMUNICATIONS
- Part IV: Miscellaneous Provisions
- Section 551: Protection of subscriber privacy