Jan 152015
 

Cybersecurity refers to the technologies and processes designed to protect computers, networks and data from unauthorized access, including attacks by cyber criminals via the Internet. However, crimes committed by hackers are not the only way sensitive information stored on computers is lost. Many security breaches result from mistakes committed by the users of these computer systems, such as uploading unintended data or unwittingly divulging information used to gain access to their system. Civilian hackers often target the personnel databases of organizations and institutions to steal personal and financial information such as social security numbers, addresses, and bank account numbers. Foreign governments hack our computer systems to steal classified military information and industrial secrets. Cybersecurity advocates say better reporting and communication of hacking events between the government and private sector will help investigations and create strategies that can counter this threat.

Pending Legislations:

S.21 – Cybersecurity and American Cyber Competitiveness Act of 2013

S.1193 & H.R.1468 – Data Security and Breach Notification Act of 2013

I oppose reforming current Cybersecurity policy and wish to defeat S.21 and S.1193 & H.R.1468

I support a comprehensive approach to prevent, detect and respond to cyber attacks against critical infrastructure such as the electric grid, the financial sector, and telecommunications networks; enhancing the security and resiliency of public and private communications and information networks against cyber attack; establishing mechanisms for sharing cyber threat and vulnerability information between the government and the private sector; enhancing U.S. diplomatic capacity and public-private international cooperation to respond to emerging cyber threats; preventing and mitigating identity theft, and wish to pass S.21

I support requiring commercial entities that acquire, maintain, store, or utilize personal information to take reasonable measures to protect and secure this data, and notifying the FBA if a security breach of personal information involving more than 10,000 individuals occurs; allowing private entities to voluntarily disclose cyber threat information to designated cybersecurity centers or to each other to assist with preventing, investigating, or mitigating threats to information security, and wish to pass S.1193 & H.R.1468

 Posted by at 12:00 am
Jan 152015
 

The 1996 Health Insurance Portability and Accountability Act (HIPAA) prohibited the use or disclosure of an individual’s medical information unless specifically authorized by the individual or the law. Currently, the health records of many millions of Americans are being digitized and converted into electronic form. This will help improve patient care by enabling doctors, hospitals and health insurers to better share and analyze patient records when providing health care. However, these digitized records will also make it easier for researchers, government regulators, and unauthorized persons to access our medical information. The Obama administration has revised HIPAA rules to allow our digitized records to be securely shared by health care providers. To address privacy concerns, it has included provisions that attempt to give patients more control over their own medical information. One of these provisions allows a patient to prohibit a doctor from disclosing medical information to a patient’s insurer if that patient pays for treatment out-of-pocket. Another provision prohibits the sale of protected health information, and the use of it for marketing and fund-raising purposes. Additional HIPPA changes increase penalties and reporting requirements for privacy violations committed by business associates of health care providers who have access to private medical records. In the past, some of these sub-contractors have been accused of privacy breeches while working for health insurers.

Pending Legislation:
S.3351 – Protect Our Health Privacy Act (112th Congress 2011-2012)

I oppose reforming current medical privacy policy

I support improving medical information privacy, including requiring encryption on all portable electronic devices containing protected health information, and wish to identify a legislator who will reintroduce S.3351 – Protect Our Health Privacy Act (112th Congress 2011-2012)

 Posted by at 12:00 am
Jan 152015
 

The practice of collecting, profiling and selling personal information gathered from Internet users is very common. Consumer profile lists are often one of the most valued assets of a retailing or marketing firm. Google and Facebook have been criticized for compiling detailed profiles of their users. Often, firms use “learning algorithms” to determine which ad to display on someone’s computer screen, or to predict one’s buying habits. These formulas can be used to create a digital picture of a viewer to infer race, gender or sexual orientation. Critics claim this technology has “the potential to eclipse longstanding civil rights protections in how personal information is used in housing, credit, employment, health, education and the marketplace.” They say algorithm data can also be used to discriminate and to make judgments, right or wrong, about who is likely to show up at work, pay their mortgage on time, or require expensive medical treatment. Using collected information to target ads, Wal Mart is said to be using algorithms to determine whether a woman is pregnant without her divulging that information. Data collectors claim they provide a beneficial service and that collecting consumer data is protected by our First Amendment. Advocates believe that collecting data about our online behavior in an invasion of our right to privacy. They believe that only consumers should decide whether their profiles are collected, personalized or sold.

Pending Legislation:

S.418 – Do Not Track Online Act of 2013

I oppose reforming current online data collection policy and wish to defeat S.418

I support regulations that establish standards for the implementation of a mechanism by which an individual can indicate whether he or she prefers to have personal information collected by providers of online services, including by providers of mobile applications and services; and rules that prohibit such providers from collecting personal information on individuals who have expressed a preference not to have such information collected, and wish to pass S.418

 Posted by at 12:00 am