SB 1166 Support Letter
Honorable Ellen Corbett, Chair
California State Senate Judiciary Committee
State Capitol, Room 5108
Sacramento, CA 95814
RE: SB 1166 (Simitian) – SUPPORT
Dear Senator Corbett:
The Consumer Federation of California supports SB 1166, which is scheduled for an upcoming hearing in the Senate Judiciary Committee on March 23, 2010.
SB 1166 would amend California's security breach notification law stating that any public agency, person or business required to issue a security breach notification to more than 500 residents must submit the notification electronically to the Attorney General. This measure also requires that the notification be written in plain language and include contact information regarding the breach, the types of information breached, and the date, estimated date, or date range of the breach. Additionally, SB 1166 would amend the substitute notice provisions of California's security breach notification law to require that an entity providing substitute notice also provide notice to the Office of Information Security and Privacy Protection.
California’s current security breach notification law does not require public agencies, businesses, or persons subject to that law to provide any standard set of information about the breach to consumers. As a result, security breach notification letters often lack important information - such as the time of the breach or type of information that was breached - or are confusing to consumers. This leaves consumers uncertain about how to respond to the breach or protect themselves from identity theft. SB 1166 makes relatively modest but helpful changes to the current security breach notification statutes to enhance consumer knowledge about, and understanding of, security breaches.
The Consumer Federation of California urges you to vote AYE on SB 1166 when it comes before you.