CUNA
  • Advocacy
    • Priorities we’re fighting for
    • Actions you can take
  • News
  • Learn
  • Compliance
  • Shop
  • Topics
    • Community Service
    • Compliance
    • Credit Union Hero
    • Credit Union Rock Star
    • Credit Union System
    • Directors
    • Human Resources
    • Leadership
    • Lending
    • Marketing
    • Operations
    • Policy & Issues
    • Sales & Service
    • Technology
  • Credit Union Magazine
    • Buyers' Guide
    • COVID-19
    • Digital Edition
    • Credit Union Hero
    • Credit Union Rock Star
    • Subscribe
    • Advertise
    • Contact
  • COVID-19
  • Advertise
  • Awards
    • Nominate Credit Union Hero
    • Nominate Credit Union Rock Star
  • Podcasts
  • Videos
  • Contact
Learn More about Member Value

News

Member Benefits
Learn more
Learn more about the benefits of membership.
Home » Robust security standards needed for data-handling entities
Policy & Issues

Robust security standards needed for data-handling entities

March 6, 2019

The cornerstone of any new data privacy requirements should be robust data security requirements for entities that collect consumers’ personal information, CUNA wrote to the House Homeland Security subcommittee on investigations Wednesday. CUNA’s letter was submitted for the record of the subcommittee’s Thursday hearing on private sector data breaches.

“Credit unions have met with members of this committee to detail damage to credit unions and their members from data breaches. The current gaps in data protection and privacy laws hurt consumers and businesses as information is misused by criminals and other actors with malicious intent. Financial institutions are at the vanguard for misuse of stolen data,” the letter reads.

“Although data security is a major issue for credit unions, we realize the problem is much bigger than the financial services industry with robust privacy and data security requirements for all industries becoming increasingly necessary,” it adds.

CUNA also called on Congress to work with the administration to “finally address consumer data privacy in a meaningful way,” and stating:

  • Any new privacy law should cover both privacy and data security. There cannot be privacy of data without protection from loss due to breach or other types of theft;
  • The law should cover all institutions, not just tech companies, credit-rating agencies, and other narrow sectors of the economy. Any company that collects, uses or shares personal data or information has the opportunity to misuse the data or lose the data through breach;
  • Data security requirements should be based upon protection of data to prevent theft and misuse;
  • Notification or disclosure after the fact are important but are not the stopping point for adequate protection. By the time a breach is disclosed, harm could already have befallen hundreds of thousands, if not millions, of individuals, so robust protection is paramount for any new requirements;
  • A law should provide mechanisms to address the harms that result from privacy violations and security violations, including data breach. Increasingly courts are recognizing rights of action for individuals and companies (including credit unions). However, individuals and companies should be afforded a private right of action to hold those that violate the law accountable, and  regulators should have the ability to take action against entities that violate the law; and
  • Any new law should preempt state requirements to simplify compliance and create equal expectation and protection for all consumers. Just like moving away from the sector specific approach, the goal should be to create a national standard for all to follow.

CUNA reached out last week to all 535 Congressional offices on the need for federal data security and privacy legislation.

KEYWORDS data
Credit Union Magazine - Winter 2020

Winter 2020

Credit Union Magazine’s Winter 2020 edition features CUNA’s 2021 lending outlook, CEO insights on adjusting to the pandemic, and board recruitment strategies.
Digital Edition •  Subscribe

Trending

  • Harper: SIF premium not ‘if’ but ‘when and how much’

  • NCUA’s SAR proposal should be adopted ‘as soon as reasonably practical’

  • Advice for a new CEO

Tweets by CUNA_News

Polls

Who should be the 2021 Credit Union Hero of the Year?

View Results
More

Champion of America’s Credit Unions

Credit Union National Association is the only national association that advocates on behalf of all of America’s credit unions. We work tirelessly to protect your best interests in Washington and all 50 states. We fuel your professional growth at every level and champion the credit union story at every turn.

More CUNA

  • About
  • Careers
  • Contact Us
  • Recommended Websites
  • Privacy Policy

Resources for

  • CUNA Board Members
  • Credit Union Advocates
  • Leagues
  • Press
  • Vendors