Fraud & Cybersecurity

CBA supports strong national data protection and consumer notification standards with effective enforcement provisions that are applicable to any party with access to important consumer financial information. CBA members are already subject to robust data protection and notification standards and these requirements must be recognized. Inconsistent state laws and regulations should be preempted in favor of strong Federal data protection and notification standards. CBA firmly holds that all parties must share in protecting consumers and, as such, the costs of a data breach should ultimately be borne by the entity that incurs the breach. Protecting consumer data is a shared responsibility, and merchants must have the same tough data security standards as financial institutions to thwart hackers as well as the ability to accept chip-based cards.