Organisations would be barred from conducting direct sales of personal information to entities that are at least 50 percent owned by or located in a country of concern,
New rules preventing access to Americans' sensitive personal data to ‘adversarial nations’ have been proposed by the U.S. Department of Justice.
The DoJ is moving to implement an executive order issued by President Joe Biden in February, which will see Americans' sensitive personal data — including Social Security numbers, biometric identifiers, human genomic data, and financial details — prevented from being sent to China, Russia, North Korea, Iran, Cuba, and Venezuela.
Under the executive order, organisations would be barred from conducting direct sales of personal information to entities that are at least 50 percent owned by or located in a country of concern, contractors' foreign employees, and foreign individuals in a country of concern, as well as be mandated to disclose third-party involvement in data sale.
"Under the proposed rule, U.S. persons transacting in these kinds of data will need to establish a compliance program based on the individual risk profile of their activities. They will need to understand the kinds and volumes of data they transact, who they are doing business with and how that data is being used, and the safeguards they use to control access to that data," said a senior Justice Department official.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
