Security Breach?
New laws could change how you handle customer info.
By Amanda C. Kooser •
Opinions expressed by Entrepreneur contributors are their own.
Data security is a high-profile topic these days. After big-name breaches involving companies like Bank of America, Choice-Point, LexisNexis and MasterCard, a new push has begun for legislation on both the state and federal levels to deal with the issue. Dorsey Morrow, general counsel for the International Information Systems Security Certification Consortium, says businesses large and small should take heed. "The proposed federal laws will apply to anyone who collects confidential or personal information from consumers," says Morrow.
Morrow sees a confluence of events that have brought the issue of data security to the fore, including a lack of adequate security, a lack of industry standards and increased interest from criminals. Besides a slew of different bills winding their way through Congress, many states have bills of their own either enacted or under consideration. Most take after the seminal 2003 California data security law, which requires California customers to be notified if their unencrypted personal information is compromised.
Continue reading this article — and all of our other premium content with Entrepreneur+
For just $5, you can get unlimited access to all Entrepreneur’s premium content. You’ll find:
- Digestible insight on how to be a better entrepreneur and leader
- Lessons for starting and growing a business from our expert network of CEOs and founders
- Meaningful content to help you make sharper decisions
- Business and life hacks to help you stay ahead of the curve
