Senators Mark Warner and Elizabeth Warren. Photo: T.J. Kirkpatrick / Bloomberg via Getty Images

Sens. Elizabeth Warren and Mark Warner introduced a bill today that would allow the Federal Trade Commission to slap penalties on credit reporting agencies (CRAs), like Equifax, when they have inadequate cybersecurity, when their data is breached, and when they don’t report those breaches in a timely manner. It also includes measures to compensate consumers whose data is compromised.

Why it matters: Equifax’s massive breach, announced last September, compromised over 145 million Americans’ personal identifying information, including Social Security Numbers, credit card numbers, and driver’s license numbers.

Although Democrats and Republicans alike grilled executives from Equifax on the breach last fall, bills that would have compensated affected consumers went nowhere.

Between the lines:

  • Warner has floated the idea that federal data breach laws could be recrafted to address different industry-specific needs, per Politico’s Martin Matishak.
  • It’s no shocker that the bill comes from two Democrats — states currently have different rules on reporting breaches, and Republican support for a proposal that would allow the federal government to preempt those state rules will likely be difficult to secure.

The bill, known as the “Data Breach Prevention and Compensation Act,” is about maintaining Americans’ access to credit in spite of a company’s data breach for Senator Warner. “This bill will ensure that companies like Equifax…are taking appropriate steps to secure data that’s central to Americans’ identity management and access to credit.”

  • The bottom line, per Senator Warren: “If companies like Equifax can’t properly safeguard the enormous amounts of highly sensitive data they are collecting and centralizing, then they shouldn’t be collecting it in the first place.”
  • It would create an Office of Cybersecurity at the FTC, which would conduct annual inspections of cybersecurity at CRAs.
  • Proposed penalties: In cases of “woefully inadequate cybersecurity” or failure to notify, the Senators propose fining doubly the automatic per consumer penalties, and increase the maximum penalty to 75% of the company’s gross revenue.
  • Proposed compensation: A base penalty of $100 per consumer who had one piece of personal identifying information (PII) breached, and $50 for each additional one. Normally, consumers will receive $1 or $2 back, per the Senators.
  • The bill would also force CRAs to return half of what they pay to the government back to consumers.

Go deeper

Updated 24 mins ago - Politics & Policy

Coronavirus dashboard

Illustration: Sarah Grillo/Axios

  1. Global: Total confirmed cases as of 3 a.m. ET: 32,844,146 — Total deaths: 994,208 — Total recoveries: 22,715,726Map.
  2. U.S.: Total confirmed cases as of 3 a.m. ET: 7,078,798 — Total deaths: 204,497 — Total recoveries: 2,750,459 — Total tests: 100,492,536Map.
  3. States: New York daily cases top 1,000 for first time since June — U.S. reports over 55,000 new coronavirus cases.
  4. Health: The long-term pain of the mental health pandemicFewer than 10% of Americans have coronavirus antibodies.
  5. Business: Millions start new businesses in time of coronavirus.
  6. Education: Summer college enrollment offers a glimpse of COVID-19's effect.

Texas city declares disaster after brain-eating amoeba found in water supply

Characteristics associated with a case of amebic meningoencephalitis due to Naegleria fowleri parasites. Photo: Smith Collection/Gado/Getty Images

Texas authorities have issued a warning amid concerns that the water supply in the southeast of the state may contain the brain-eating amoeba naegleria fowleri following the death of a 6-year-old boy.

Details: The Texas Commission on Environmental Quality issued a "do not use" water alert Friday for eight cities, along with the Clemens and Wayne Scott Texas Department of Criminal Justice corrections centers and the Dow Chemical plant in Freeport. This was later lifted for all places except for Lake Jackson, which issued a disaster declaration Saturday.

Updated 9 hours ago - Politics & Policy

What they're saying: Trump nominates Amy Coney Barrett for Supreme Court

Judge Amy Coney Barrett in the Rose Garden of the White House on Sept. 26. Photo: Oliver Douliery/AFP via Getty Images

Democratic and Republican lawmakers along with other leading political figures reacted to President Trump's Saturday afternoon nomination of federal appeals court Judge Amy Coney Barrett to succeed Justice Ruth Bader Ginsburg on the Supreme Court.

What they're saying: "President Trump could not have made a better decision," Senate Majority Leader Mitch McConnell said in a statement. "Judge Amy Coney Barrett is an exceptionally impressive jurist and an exceedingly well-qualified nominee to the Supreme Court of the United States."