Fandom

The IT Law Wiki

Combating Identity Theft: A Strategic Plan

32,169pages on
this wiki
Add New Page
Talk0 Share

Ad blocker interference detected!


Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.

Citation Edit

The President's Identity Theft Task Force, Combating Identity Theft: A Strategic Plan (Sept. 2008) (full-text).

Overview Edit

Combat

This report documents the President's Task Force on Identity Theft’s efforts to implement the Strategic Plan’s recommendations. The report indicates that the Task Force successfully carried out most of the recommendations or is making substantial progress in doing so.

Recommendations Edit

The report made recommendations in four primary areas:

  • preventing identity theft by keeping consumer data out of criminals’ hands,
  • preventing identity theft by making it more difficult for criminals to misuse consumer data,
  • assisting victims in detecting and recovering from identity theft, and
  • deterring identity theft by increasing the prosecution and punishment of identity thieves.

With respect to identity theft prevention, the Task Force suggested that decreasing the use of social security numbers (SSNs) in the public sector and reviewing the use of SSNs in the private sector could help prevent identity theft. Also, the Task Force suggested that educating employers and individuals on how to safeguard data, as well as establishing national data protection and breach notification standards, could further aid in preventing identity theft.

Relating to victim assistance, the Task Force suggested that identity theft victims may be better served if first responders were specially trained to assist this particular class of victim. It also addressed victim redress by recommending that identity theft victims be able to obtain an alternative identification document after the theft of their identities.

Through the Identity Theft Enforcement and Restitution Act of 2008 (Title II of Pub. L. No. 110-326), Congress responded to the Task Force’s recommendation that criminal restitution statutes allow victims to be compensated for their time in recovering from the actual or attempted identity theft.

Regarding identity theft deterrence, the Task Force recommended enhancing information gathering and sharing between domestic law enforcement agencies and the private sector, ramping up identity theft training for law enforcement and prosecutors, and increasing enforcement and prosecution of identity theft. The Task Force also promoted international cooperation to decrease identity theft through identifying countries that may be safe havens for identity thieves, encouraging anti-identity theft legislation in other countries, and increasing international cooperation in the investigation and prosecution of identity theft.

Legislative Recommendations Edit

More specifically, the Task Force recommended that Congress close gaps in the federal criminal statues to more effectively prosecute and punish identity theft-related offenses by

Congress has already taken steps to address some of these Task Force recommendations. Through the Identity Theft Enforcement and Restitution Act of 2008, Congress, among other things, eliminated provisions in the U.S. Code requiring the illegal conduct to involve interstate or foreign communication, eliminated provisions requiring that damage to a victim’s computer amass to $5,000, and expanded the definition of cyber-extortion.

However, Congress did not addressed the Task Force recommendation to expand the identity theft and aggravated identity theft statutes to apply to corporations and organizations as well as to individuals, nor has it addressed the recommendation to expand the list of predicate offenses for aggravated identity theft.

OMB Actions Edit

The Task Force's guidance was distributed in a September 2006 memorandum from the Office of Management and Budget to the heads of federal agencies and departments.[1] In May 2007, the Office of Management and Budget issued a memorandum that updated the September 2006 guidance and, among other things, required agencies to develop and implement data breach notification policies within 120 days.[2]

References Edit

  1. See Recommendations for Identity Theft Related Data Breach Notification.
  2. See OMB Memorandum M-07-16.

Also on Fandom

Random Wiki