PROTECTIONS FOR CYBERATTACK VICTIMS NEEDS TO INCLUDE MINORS

“Cyberattacks do not discriminate between young and old,”–Sen. Chris Johnson

AUGUSTA – Lawmakers considered expanding a measure that strengthens consumer protections following data breaches to include minors who were also victimized by the breach.

Sen. Chris Johnson of Somerville

“Cyberattacks do not discriminate between young and old. And even though credit histories don’t yet exist for our children, their medical records and personally identifiable information like social security numbers and birthdays do,” said Democratic State Senator Chris Johnson, the sponsor of the amendment. “The nature and breadth of the Anthem breach points to the urgent need for credit protection for minors.”

In Maine, 300,000 people had their medical data breached in the recent cybersecurity attack at Anthem that reached more than 80 million people nationwide. The stolen data also included social security numbers and birthdays.

The bill as originally drafted reduces the maximum fees that may be charged by a consumer reporting agency for placing or removing a security freeze on a consumer report. The proposed amendment to the bill, LD 382,  would expand this protection to include minors under the age of 16. Currently, Wisconsin, Maryland, Delaware, Illinois, Michigan, Texas, and Oregon all have similar laws in place.

The state’s Insurance and Financial Affairs Committee will hold a work session on the bill LD 382, “An Act To Amend the Allowable Security Freeze Fees Charged by a Consumer Reporting Agency,”  in the coming weeks.

###