The Online Trust Alliance (OTA) wrote a letter to Congress earlier this week in response to President Obama's proposed Personal Data Notification & Protection Act.
In the letter, the organization lists six points it believes are imperative to creating a complete federal data breach notification law. Notably, the group says a federal law needs to preempt the existing 47 state laws and must also contain a safe harbor from regulator penalties for businesses or organizations that demonstrate a commitment to the adoption of best security and privacy practices.
The group also wrote that any law should “contain an appropriate coverage of personal information triggering notification obligations.”
“As an individual's online worlds grows and expands, as our next generations spend more and more time socializing, communicating, gaming, shopping, banking, and researching online, so must the protections afforded to them,” the group wrote.