While most attention at the moment in Washington, D.C., is on the heavily debated tax bill, there’s another proposed bill that could have major implications for businesses hit by a data breach.
A re-introduced bill, the Data Security and Breach Notification Act, proposes harsher sentences for company executives who fail to notify consumers of a breach. The initial terms of the bill calls for jail time for those who are aware of breaches, yet fail to alert consumers in a timely fashion.
"We need a strong federal law in place to hold companies truly accountable for failing to safeguard data or inform consumers when that information has been stolen by hackers," said Sen. Bill Nelson, D-FL, a sponsor of the bill, wrote in a statement. "Congress can either take action now to pass this long overdue bill or continue to kowtow to special interests who stand in the way of this commonsense proposal. When it comes to doing what's best for consumers, the choice is clear."