Commerce panel to vote on data breach bill

A leading House panel will consider legislation creating a national data security standard that would also require companies to alert victims of a data breach within a certain timeframe.

The House Energy and Commerce Committee will hear opening remarks on the bill on Tuesday, followed by a full markup on Wednesday, a spokeswoman said. The legislation passed the trade subcommittee by voice vote on March 25 despite objections by some Democrats.

{mosads}Lawmakers are finalizing cybersecurity legislation ahead of a series of votes by the full House between April 21 and 23, though it is unclear which measures leadership will bring to the floor.

Establishing a national data breach standard is a priority for private companies, creating pressure on GOP leaders to see the bill pass the House.

The version of the bill debated on March 25 would require companies to maintain reasonable security practices and inform affected customers of a data breach within 30 days of when the networks are secured from hackers.

Violating these rules would subject companies to enforcement actions by the Federal Trade Commission.

Some Democrats disagree with the bill’s approach because it would pre-empt stronger data protection laws at the state level.

In response, Rep. Jim Langevin (D-R.I.) introduced an alternative bill that would create a notification standard without imposing federal data security rules.

It is unclear if and how committee leaders will address Democrats’ concerns.