Bill

Bill > S132


MA S132

MA S132
Relative to the security of Personal Financial information


summary

Introduced
01/22/2013
In Committee
01/22/2013
Crossed Over
Passed
Dead
08/01/2014

Introduced Session

188th General Court

Bill Summary

For legislation relative to the security of Personal Financial information. Consumer Protection and Professional Licensure.

AI Summary

This bill, titled "Relative to the security of Personal Financial information," amends existing Massachusetts law (Chapter 93H) to strengthen protections for consumers' financial data. Key provisions include defining terms like "access device" (e.g., credit or debit cards), "breach of security" (unauthorized access or use of data that risks identity theft or fraud), and "personal information" (which includes Social Security numbers, driver's license numbers, or financial account/card numbers when combined with other identifying data). The bill prohibits businesses that accept payment cards from retaining sensitive data like card security codes, PIN verification numbers, or full magnetic stripe data after a transaction is authorized, with a slightly longer retention period allowed for PIN debit transactions. Furthermore, if a data breach occurs, businesses and their service providers are required to reimburse financial institutions for costs associated with protecting cardholders, such as reissuing cards, closing accounts, or notifying customers. The bill also clarifies that while compliance with federal data security laws can satisfy some state requirements, businesses must still notify affected Massachusetts residents, the Attorney General, and the Director of the Office of Consumer Affairs and Business Regulation of any breach. Finally, the Attorney General is empowered to take legal action to address violations of these provisions.

Committee Categories

Labor and Employment

Sponsors (1)

Last Action

Accompanied a study order, see H4042 (on 04/17/2014)

bill text


bill summary

Loading...

bill summary

Loading...
Loading...