WeVote

Bill

Bill

HB 5744

AN ACT PROHIBITING CERTAIN BUSINESS CONDUCT REGARDING STORAGE OF CONSUMERS' CREDIT CARD AND DEBIT CARD INFORMATION.

2025 Regular Session Introduced by Robin Comey and 1 co-sponsor

Connecticut bill restricts businesses from storing full credit/debit card information, requiring deletion post-transaction to reduce identity theft and data breach risks.

PUBLIC HEARING 0219
0
WeVote Research Nonpartisan
Bill Summary · HB 5744

Legislative bill overview

HB 5744 would establish restrictions on how Connecticut businesses can store consumers' credit card and debit card information, likely requiring deletion of sensitive payment data after transactions are complete or within specified timeframes. The bill aims to reduce data breach risks and identity theft by limiting the retention of full card numbers and security codes.

Why is this important

Data breaches involving stored payment information affect millions of Americans annually and can result in fraudulent charges, identity theft, and significant financial losses for consumers. Requiring businesses to minimize storage of sensitive card data reduces the window of vulnerability if a company's systems are compromised, protecting Connecticut residents' financial security.

Potential points of contention

  • Business compliance costs: Small retailers and service providers may face expenses implementing new payment processing systems or updating existing infrastructure to comply with storage limitations
  • Operational challenges: Some businesses argue they need stored card information for recurring billing, subscription services, or customer convenience—requiring exceptions could complicate implementation
  • Enforcement mechanisms: Unclear whether penalties apply only to data breaches or to any violation of storage prohibitions, and which state agency bears enforcement responsibility

Compiled from official sources — confirm details with the bill’s official record.

Sign in to ask a question.