This site is a production of the Berkman Center for Internet & Society. Please email if you have questions, contributions, or ideas about improving this site.
posted by scubacuda
on Friday November 28, @01:42AM
from the mo'-mo'-MO'-regulation dept.
Forbes: CA legislators angry over a compromised payroll computer drafted Senate Bill 1386 (aka The CA Information Practices Act), requiring companies to inform their Cali customers when break-ins put their personal data at risk. Modeled after this bill, Sen. Dianne Feinstein's Notification of Risk to Personal Data Act also requires all U.S. businesses and government agencies to notify customers of a network security breach. And Rep. Adam Putnam of FL wants to require companies covered by the Sarbanes-Oxley Act to prove they've had annual computer security assessments. Opines one executive, "The idea is to put in place a basic security standard, but the better approach is to augment those standards with some kind of incentive. Right now there's nothing but a disincentive to disclose a breach because it's a good way to get sued. Right now people are trying to figure this out."
The Fine Print:
The following comments are owned by whoever posted them.
We are not responsible for them in any way.
Humanity has the stars in its future, and that future is too important to be
lost under the burden of juvenile folly and ignorant superstition.
- Isaac Asimov