A local state lawmaker is supporting two pieces of legislation that he believes will help protect Pennsylvanians affected by data breaches.
State Rep. Brian Ellis of Butler says the bills are partially in response to the Equifax breach last month.
“5.4 million Pennsylvanians were affected by this and what we want to do is put in a plan so they can’t do what Equifax did,” Rep. Ellis said Tuesday. “They can’t wait six, seven, eight weeks to let us know that our information was compromised. In that time period a lot of bad can happen.”
The first bill, which Rep. Ellis is sponsoring, would update the Breach of Personal Information Act.
This update would require companies to notify consumers when a breach happens with information including when specifically the breach occurred, the type of information possibly released, and a toll-free number and address of credit reporting agencies.
The second bill, which is sponsored by Rep. Mike Driscoll (D-Philadelphia) would update the Credit Reporting Agency Act. This would waive the current credit freeze fee, which charges up to $10 per account. If a data breach occurs, consumers would be provided with three months of free credit monitoring.
“This is to basically eliminate their ability to profit from their own mistake,” he said. “We’re going to say you can’t charge for a credit report, up to three in the first year. And you can’t charge for a credit freeze for up to three years. These protections won’t stop the breaches, but this will give consumers protection after the breach occurs. And it’s needed in Pennsylvania, it’s needed across the country, because these breaches aren’t going away.”
The bills are expected to be voted on in the House Commerce Committee in a few weeks.
To view Rep. Ellis’ full comments on the bills, click here.