WeVote

Bill

Bill

HR 9482

To prohibit data brokers from selling and transferring certain sensitive data.

119th Congress Introduced by Adriano Espaillat and 4 co-sponsors

The bill bans data brokers from selling or transferring highly sensitive personal data, boosting privacy protections and imposing compliance, enforcement, and redress measures.

Introduced in House
0
WeVote Research Nonpartisan
Bill Summary · HR 9482

Summary of HR 9482 (Session 119)

Purpose and intent

  • HR 9482 aims to prohibit data brokers from selling or transferring certain categories of sensitive data. The bill seeks to limit how data brokers can handle highly personal information, with the goal of strengthening privacy protections for individuals.

Key provisions and changes

  • Prohibition on sale and transfer: Data brokers would be barred from selling or transferring specified sensitive data. The bill defines the scope of data moves that would be prohibited and creates enforcement mechanisms for non-compliance.
  • Definitions and scope: The legislation sets forth definitions for what constitutes a data broker and which data elements are considered sensitive. This typically includes data related to health, genetic information, financial data, biometric data, religious or political affiliations, sexual orientation or behavior, and other deeply personal identifiers.
  • Compliance requirements: Data brokers would likely be required to implement compliance programs, undertake reasonable security measures, and maintain records to demonstrate adherence to the prohibitions. This may include data inventory, risk assessments, and potential notification duties.
  • Enforcement and penalties: The bill would establish enforcement provisions, including potential penalties for violations. This could involve civil penalties, injunctive relief, and coordination with regulatory agencies.
  • Consumer rights and redress: Provisions may create or reinforce mechanisms for individuals to know what data is held about them, request deletions or corrections, and seek remedies if their sensitive data is misused or improperly sold.
  • Exclusions or limitations: There may be specified exceptions (e.g., data processing for essential services, aggregated or de-identified data that cannot reasonably identify an individual, or data subject to other regulatory regimes) to balance privacy protections with legitimate data use.

Who or what would be affected

  • Data brokers: The primary entities affected would be firms that collect, assemble, and sell consumer data to third parties, including marketing companies, analytics firms, and各种 intermediaries handling consumer information.
  • Consumers: Individuals would gain stronger protections against the sale or transfer of their sensitive data without consent or a legitimate purpose.
  • Covered entities: Any organizations or individuals that purchase data from brokers or rely on data broker services may need to adjust data sourcing, due diligence, and compliance practices.
  • Regulators: Agencies responsible for privacy and consumer protection would supervise compliance, enforce penalties, and issue guidance.

Procedural and timeline aspects

  • Introduction and referral: HR 9482 was introduced in the House and referred to the House Committee on Energy and Commerce on June 25, 2026. This indicates the bill is at an early stage of the legislative process.
  • Next steps: Committee consideration, potential amendments, and eventual floor action (passage by the House) or markup proceedings would determine the bill’s progression. If passed by the House, it would move to the Senate for consideration and potential reconciliation.
  • Sponsor and support: The bill has multiple co-sponsors, including Adriano Espaillat, Mary Gay Scanlon, Pramila Jayapal, Nydia Velázquez, and Rashida Tlaib, signaling cross-party and cross-ideological interest in data privacy and consumer protection.

Potential impact and considerations

  • Privacy protection: By limiting the sale of highly sensitive data, individuals could experience reduced exposure to targeted marketing, profiling, or misuse of personal information.
  • Compliance burden: Data brokers may incur compliance costs related to data inventories, security measures, and reporting requirements.
  • Innovation and data markets: Some stakeholders may express concerns about the impact on legitimate data-driven services; the bill’s balance between privacy and allowed data use would be scrutinized in hearings and amendments.
  • Interplay with existing laws: The bill could interact with state privacy laws, sector-specific regulations, and federal privacy initiatives, creating a more uniform framework or adding complexity for multi-state data operations.

Note: The summary reflects the bill’s stated purpose and typical elements of data-broker privacy legislation. Specific text, definitions, and precise enforcement mechanisms would be available in the bill’s full language and any amendments adopted during committee consideration.

Compiled from official sources — confirm details with the bill’s official record.

Sign in to ask a question.