legislation: 108-s-2481
Data license: Public Domain (U.S. Government data) · Data source: Federal Register API & Regulations.gov API
This data as json
| bill_id | congress | bill_type | bill_number | title | policy_area | introduced_date | latest_action_date | latest_action_text | origin_chamber | sponsor_name | sponsor_state | sponsor_party | sponsor_bioguide_id | cosponsor_count | summary_text | update_date | url |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 108-s-2481 | 108 | s | 2481 | Increasing Notice of Foreign Outsourcing Act | Commerce | 2004-06-01 | 2004-06-01 | Read twice and referred to the Committee on the Judiciary. (text of measure as introduced: CR S6276-6278) | Senate | Sen. Nelson, Bill [D-FL] | FL | D | N000032 | 1 | Increasing Notice of Foreign Outsourcing Act - Directs the Secretary of Health and Human Services (HHS) to issue regulations requiring covered entities under the Health Insurance Portability and Accountability Act of 1996 that outsource protected health information to foreign-based business associates to include in their notice of privacy protections: (1) notification of outsourcing; (2) any risks and consequences to the privacy and security of such information resulting from outsourcing; (3) additional measures the covered entity is taking to protect outsourced protected health information; and (4) certification that the covered entity has taken reasonable steps to ensure that the handling of such information will comport with applicable laws. Amends the Gramm-Leach-Bliley Act to impose similar requirements on financial institutions that outsource nonpublic personal information to foreign-based businesses. Directs the Secretary of HHS, with regard to protected health information outsourced by covered entities, and the Federal banking agencies, National Credit Union Administration, Secretary of the Treasury, Securities and Exchange Commission, and Federal Trade Commission, with regard to nonpublic personal information outsourced by financial institutions, to issue regulations requiring: (1) outsourcing contracts with foreign-based businesses to contain audit provisions; and (2) such businesses and subcontractors to be contractually bound by Federal privacy standards and security safeguards. Establishes notification procedures in the event of a breach of database security involving protected health or nonpublic personal information. Requires contracts with foreign call centers to include a provision requiring call center employees to disclose their physical location upon request. Imposes civil penalties for violators. | 2023-01-15T04:49:20Z |