This alert may not be shared outside your organization, Do Not Repost or send, place on other websites, List servers, or send to others via email, including other associations or parties. Members and Law enforcement use only. Contact us for any permissions. To do otherwise will result in the loss of membership.
The Potential and Pitfalls of a Federal Privacy Law
Congress is considering a US federal privacy law. It’s been brewing for the last ten years and is getting closer. On July 20, 2022, the House Energy and Commerce Committee overwhelmingly voted (53-2) to advance the American Data Privacy and Protection Act (ADPPA), H.R. 8152, to the full House of Representatives. But there are still problems to navigate.
SecurityWeek talked to Mitzi Hill (a partner at law firm Taylor English Duma, and Adjunct Professor of Law at Emory University Law School), and Christina Montgomery (Chief Privacy Officer at IBM) to examine the merits and likelihood of a US federal privacy law.
Current state of privacy legislation in the US
The current state of privacy legislation is a patchwork. There are four state privacy laws. There are individual requirements within regulated verticals such as finance and healthcare. There’s the PCI DSS requirement for companies wishing to accept credit card payments. And there are international laws (primarily GDPR, but an increasing number of other international laws) that must be met on the global level.