SAFE Data Act Could Hurt Consumers
DATA PROTECTION—U.S.August 2, 2011
Some security experts are concerned that shortening breach notification requirements to within 48 hours of the discovery of a breach--as in the SAFE Data Act, which recently passed the House Energy and Commerce Committee--may hurt consumers in the long run, reports Dark Reading. Highlighting the importance of understanding the scope of a breach, Larry Ponemon, CIPP, of the Ponemon Institute, says, "How can you go through the process in a way that is systematic and highly accurate in 48 hours? A lot of people are going to get notices that don't necessarily apply to them, and that will actually diminish the value of the data breach notification itself." The bill's sponsor, Rep. Mary Bono Mack (R-CA) says "we can no longer afford to do nothing."