New Bipartisan Data Privacy Bill Seeks to Put Americans in ‘Control of Their Own Data’

by

The bill gives citizens the right to sue companies violating their privacy rights.

New legislation backed by Republican and Democrat lawmakers aims to create a single national data privacy standard to give Americans better control over how their private information is used.

On Sunday, Rep. Cathy McMorris Rodgers (R-Wash.) and Sen. Maria Cantwell (D-Wash.) unveiled the American Privacy Rights Act, establishing “uniform national data privacy rights,” according to an April 7 press release. The single national privacy standard is stronger than similar laws in any state, it said. The proposal gives Americans “control over where their personal information goes, including the ability to prevent the transfer or selling of their data. The bill also allows individuals to opt out of data processing if a company changes its privacy policy.”

The Act minimizes how much individual data businesses can collect, retain, and use. Companies will only be able to collect data needed to provide products and services. Firms handling sensitive data must receive the “express consent” of customers before transferring such information to a third party.

Under the proposal, businesses are required to allow people to access, correct, delete, and export data. In addition, individuals can opt out of targeted advertising.

The Act “gives individuals the right to sue bad actors who violate their privacy rights—and recover money for damages when they’ve been harmed.” It prohibits companies from enforcing mandatory arbitration against customers in case the individuals suffered “substantial privacy harm.”

“This landmark legislation gives Americans the right to control where their information goes and who can sell it,” said Ms. Rodgers.

Related Stories

Google Settles ‘Incognito’ Suit, Commits to Wiping User Browsing Data
AT&T Says Data Breach Leaked Millions of Customers’ Information Online; Were You Affected?

“It reins in Big Tech by prohibiting them from tracking, predicting, and manipulating people’s behaviors for profit without their knowledge and consent. Americans overwhelmingly want these rights, and they are looking to us, their elected representatives, to act.”

The bill prevents companies from using people’s private information to discriminate against them. Individuals can opt out of a company’s use of algorithms to make decisions in matters like employment, credit opportunities, housing, insurance, and education. Companies have to conduct annual algorithm reviews to ensure they do not subject individuals to discrimination.

Businesses are obligated to implement “strong data security standards” so that there is limited chance of identity theft or harm. Company executives are responsible for making sure their business takes all the necessary actions to protect customer data.

“A federal data privacy law must do two things: it must make privacy a consumer right, and it must give consumers the ability to enforce that right,” said Ms. Cantwell.

“Working in partnership with Representative McMorris Rodgers, our bill does just that. This bipartisan agreement is the protections Americans deserve in the Information Age.”

Data Privacy Concerns

The new bill comes as multiple major companies have been involved in data safety breaches and privacy lawsuits in recent times.

On March 30, telecom giant AT&T announced that data of roughly 65.4 million former and 7.6 million current users were leaked on the dark web.

The dataset appeared to have been from 2019 or earlier, with information like names, passcodes, email addresses, social security numbers, phone numbers, and home addresses potentially compromised. AT&T subsequently reset passcodes of the 7.6 million current users.

Tech giant Google recently agreed to settle a class action lawsuit alleging the company tracked users’ online activities even while using Chrome in “incognito” mode. The company agreed to delete billions of data records related to users’ private browsing activities.

The settlement ensures that “Google will collect less data from users’ private browsing sessions, and that Google will make less money from the data,” said the plaintiff’s lawyers.

In June last year, the Federal Communications Commission (FCC) launched the Privacy and Data Protection Task Force to coordinate efforts to respond to issues like data breaches and consumer privacy infringements by communications providers.
In December, the FCC updated its data breach notification rules. The rules were adopted 16 years ago and in the meantime, “data breaches have only grown in frequency and severity,” the agency said.

The updated rules require service carriers to notify the FCC, the FBI, and the U.S. Secret Service about data breaches. “We require such notice to be made as soon as practicable, and in no event later than seven business days, after reasonable determination of the breach.”

The FCC also eliminated the “mandatory waiting period for carriers to notify customers” about a data breach. Instead, the agency now requires carriers “to notify customers of breaches of covered data without unreasonable delay after notification to the Commission and law enforcement, and no later than 30 days after reasonable determination of a breach.”

The agency has also taken action against data brokers—firms that specialize in selling people’s data. In January, the FTC banned data broker X-Mode Social as well as its successor, Outlogic, from sharing or selling any sensitive location data.

The decision came as part of the broker’s settlement with the agency over allegations that the company “sold precise location data that could be used to track people’s visits to sensitive locations such as medical and reproductive health clinics, places of religious worship, and domestic abuse shelters,” the FTC said.

A few days later, the FTC also banned data aggregator InMarket Media from selling or licensing precise location data.

Original News Source Link – Epoch Times

Running For Office? Conservative Campaign Consulting – Election Day Strategies!