b'<html>\n<title> - FIFTH IN A SERIES OF HEARINGS ON SOCIAL SECURITY NUMBER HIGH-RISK ISSUES</title>\n<body><pre>[House Hearing, 109 Congress]\n[From the U.S. Government Printing Office]\n\n\n\n \n                     FIFTH IN A SERIES OF HEARINGS\n               ON SOCIAL SECURITY NUMBER HIGH-RISK ISSUES\n\n=======================================================================\n\n                                HEARING\n\n                               before the\n\n                    SUBCOMMITTEE ON SOCIAL SECURITY\n\n                                 of the\n\n                      COMMITTEE ON WAYS AND MEANS\n                     U.S. HOUSE OF REPRESENTATIVES\n\n                       ONE HUNDRED NINTH CONGRESS\n\n                             SECOND SESSION\n\n                               __________\n\n                             MARCH 30, 2006\n\n                               __________\n\n                           Serial No. 109-62\n\n                               __________\n\n         Printed for the use of the Committee on Ways and Means\n\n\n\n\n                    U.S. GOVERNMENT PRINTING OFFICE\n30-440                      WASHINGTON : 2006\n_____________________________________________________________________________\nFor Sale by the Superintendent of Documents, U.S. Government Printing Office\nInternet: bookstore.gpo.gov  Phone: toll free (866) 512-1800; (202) 512\xef\xbf\xbd091800  \nFax: (202) 512\xef\xbf\xbd092250 Mail: Stop SSOP, Washington, DC 20402\xef\xbf\xbd090001\n\n                      COMMITTEE ON WAYS AND MEANS\n\n                   BILL THOMAS, California, Chairman\n\nE. CLAY SHAW, JR., Florida           CHARLES B. RANGEL, New York\nNANCY L. JOHNSON, Connecticut        FORTNEY PETE STARK, California\nWALLY HERGER, California             SANDER M. LEVIN, Michigan\nJIM MCCRERY, Louisiana               BENJAMIN L. CARDIN, Maryland\nDAVE CAMP, Michigan                  JIM MCDERMOTT, Washington\nJIM RAMSTAD, Minnesota               JOHN LEWIS, Georgia\nJIM NUSSLE, Iowa                     RICHARD E. NEAL, Massachusetts\nSAM JOHNSON, Texas                   MICHAEL R. MCNULTY, New York\nPHIL ENGLISH, Pennsylvania           WILLIAM J. JEFFERSON, Louisiana\nJ.D. HAYWORTH, Arizona               JOHN S. TANNER, Tennessee\nJERRY WELLER, Illinois               XAVIER BECERRA, California\nKENNY C. HULSHOF, Missouri           LLOYD DOGGETT, Texas\nRON LEWIS, Kentucky                  EARL POMEROY, North Dakota\nMARK FOLEY, Florida                  STEPHANIE TUBBS JONES, Ohio\nKEVIN BRADY, Texas                   MIKE THOMPSON, California\nTHOMAS M. REYNOLDS, New York         JOHN B. LARSON, Connecticut\nPAUL RYAN, Wisconsin                 RAHM EMANUEL, Illinois\nERIC CANTOR, Virginia\nJOHN LINDER, Georgia\nBOB BEAUPREZ, Colorado\nMELISSA A. HART, Pennsylvania\nCHRIS CHOCOLA, Indiana\nDEVIN NUNES, California\n\n                    Allison H. Giles, Chief of Staff\n\n                  Janice Mays, Minority Chief Counsel\n\n                                 ______\n\n                    SUBCOMMITTEE ON SOCIAL SECURITY\n\n                    JIM MCCRERY, Louisiana, Chairman\n\nE. CLAY SHAW JR., Florida            SANDER M. LEVIN, Michigan\nSAM JOHNSON, Texas                   EARL POMEROY, North Dakota\nJ.D. HAYWORTH, Arizona               XAVIER BECERRA, California\nKENNY C. HULSHOF, Missouri           STEPHANIE TUBBS JONES, Ohio\nRON LEWIS, Kentucky                  RICHARD E. NEAL, Massachusetts\nKEVIN BRADY, Texas\nPAUL RYAN, Wisconsin\n\nPursuant to clause 2(e)(4) of Rule XI of the Rules of the House, public \nhearing records of the Committee on Ways and Means are also published \nin electronic form. The printed hearing record remains the official \nversion. Because electronic submissions are used to prepare both \nprinted and electronic versions of the hearing record, the process of \nconverting between various electronic formats may introduce \nunintentional errors or omissions. Such occurrences are inherent in the \ncurrent publication process and should diminish as the process is \nfurther refined.\n\n\n                            C O N T E N T S\n\n                               __________\n\n                                                                   Page\n\nAdvisory of March 23, 2006 announcing the hearing................     2\n\n                               WITNESSES\n\nThe Honorable David Dreier, a Representative in Congress from the \n  State of California............................................     5\nThe Honorable Silvestre Reyes, a Representative in Congress from \n  the State of Texas.............................................     9\n\n                                 ______\n\nFederal Trade Commission, Joel Winston, Associate Director, \n  Division of Privacy and Identity Protection, Bureau of Consumer \n  Protection.....................................................    28\nU.S. Government Accountability Office, Cynthia M. Fagnoni, \n  Managing Director, Education, Workforce, and Income Security...    17\n\n                                 ______\n\nBITS Fraud Reduction Steering Committee, Erik Stein..............    60\nConsumer Data Industry Association, Stuart K. Pratt..............    68\nCouncil of State Court Administrators, Mary C. McQueen...........    47\nIdentity Theft Resource Center, Nicole Robinson..................    42\nNational Council of Investigation and Security Services, Bruce \n  Hulme..........................................................    76\n\n                       SUBMISSIONS FOR THE RECORD\n\nKenney, John P., Corona Del Mar, CA, letter......................    89\nSybesma, Jamie, Fishers, IN, statement...........................    89\n\n\n                    FIFTH IN A SERIES OF HEARINGS ON\n                SOCIAL SECURITY NUMBER HIGH-RISK ISSUES\n\n                              ----------                              \n\n\n                        THURSDAY, MARCH 30, 2006\n\n             U.S. House of Representatives,\n                       Committee on Ways and Means,\n                           Subcommittee on Social Security,\n                                                    Washington, DC.\n\n    The Subcommittee met, pursuant to notice, at 2:40 p.m., in \nroom B-318, Rayburn House Office Building, Hon. Jim McCrery \n(Chairman of the Subcommittee) presiding.\n    [The advisory announcing the hearing follows:]\n\nADVISORY FROM THE COMMITTEE ON WAYS AND MEANS\n\n                    SUBCOMMITTEE ON SOCIAL SECURITY\n\n                                                CONTACT: (202) 225-9263\nFOR IMMEDIATE RELEASE\nMarch 23, 2006\nNo. SS-14\n\n                       McCrery Announces Fifth in\n\n                   Series of Subcommittee Hearings on\n\n                Social Security Number High-Risk Issues\n\n    Congressman Jim McCrery, (R-LA), Chairman, Subcommittee on Social \nSecurity of the Committee on Ways and Means, today announced that the \nSubcommittee will hold the fifth in a series of Subcommittee hearings \non Social Security number (SSN) high-risk issues. The hearing will \nexamine the role of SSNs in identity theft and options to enhance SSN \nprivacy. The hearing will take place on Thursday, March 30, 2006, in \nroom B-318 Rayburn House Office Building, beginning at 2:00 p.m.\n      \n    In view of the limited time available to hear witnesses, oral \ntestimony at this hearing will be from invited witnesses only. However, \nany individual or organization not scheduled for an oral appearance may \nsubmit a written statement for consideration by the Subcommittee and \nfor inclusion in the printed record of the hearing.\n      \n\nBACKGROUND:\n\n      \n    Identity theft is a serious crime in which a victim\'s personal \ninformation may be used to fraudulently obtain credit, goods or \nservices, employment, government documents or benefits, or to commit \nother crimes. According to a 2006 survey released by the Council of \nBetter Business Bureaus and Javelin Strategy & Research, there are \nalmost 9 million adult victims of identity fraud (about 4 percent of \nthe U.S. adult population). These victims may spend significant amounts \nof money and time to resolve their problems: on average $422 and 40 \nhours per victim. Total identity theft costs exceed $50 billion \nannually.\n      \n    Although SSNs have many important legitimate uses, the Federal \nTrade Commission (FTC) indicates that they also play a pivotal role in \nidentity theft. According to the FTC, the SSN is integral to many \nbusiness transactions, and identity thieves use the SSN as a key to \nunlock access to the financial benefits of their victims. Despite its \nvital role in our financial system, there is no Federal law that \nrequires comprehensive confidentiality protection for the SSN. An SSN \nmay be on display to the general public on employee badges, in court \ndocuments, or on the Internet. However, there are laws that provide \nlimited SSN confidentiality. For example, the Gramm-Leach-Bliley Act \n(P.L. 106-102) restricts the reuse and redisclosure of certain personal \ninformation, including SSNs, by financial institutions. Also, many \nStates have enacted legislation to restrict the use, disclosure, or \ndisplay of SSNs.\n      \n    Members of Congress, concerned about the magnitude of the problem \nand its devastating effects on victims, have introduced legislation \nthat would place various restrictions and prohibitions on the use, \nsale, purchase, or display of SSNs, as well as create new criminal and \ncivil penalties for those who misuse SSNs. Also, legislation has been \nintroduced that would require improvements to the process of issuing \nSSNs or the design of the SSN card to prevent individuals from \nfraudulently obtaining an SSN or counterfeiting SSN cards.\n      \n    In announcing the hearing, Chairman McCrery stated, ``We must \ncarefully examine all options to keep Social Security numbers, or SSNs, \nout of the hands of identity thieves. As we do so, we must remember \nthat SSNs play a key role in our society, whether in business \ntransactions, tax administration, public benefits, or the court \nsystems. Through this hearing we will explore how best to achieve the \nappropriate balance between the need for protecting SSN privacy and \nallowing their use for legitimate and necessary purposes.\'\'\n      \n\nFOCUS OF THE HEARING:\n\n      \n    The Subcommittee will examine the role of SSNs in abetting identity \ntheft, and the effects of proposals to prohibit or restrict the use, \nsale, purchase, or display of SSNs by individuals, businesses, or the \ngovernment.\n      \n\nDETAILS FOR SUBMISSION OF WRITTEN COMMENTS:\n\n      \n    Please Note: Any person(s) and/or organization(s) wishing to submit \nfor the hearing record must follow the appropriate link on the hearing \npage of the Committee website and complete the informational forms. \nFrom the Committee homepage, http://waysandmeans.house.gov, select \n``109th Congress\'\' from the menu entitled, ``Hearing Archives\'\' (http:/\n/waysandmeans.house.gov/Hearings.asp?congress=17). Select the hearing \nfor which you would like to submit, and click on the link entitled, \n``Click here to provide a submission for the record.\'\' Once you have \nfollowed the online instructions, completing all informational forms \nand clicking ``submit\'\' on the final page, an email will be sent to the \naddress which you supply confirming your interest in providing a \nsubmission for the record. You MUST REPLY to the email and ATTACH your \nsubmission as a Word or WordPerfect document, in compliance with the \nformatting requirements listed below, by close of business Thursday, \nApril 13, 2006. Finally, please note that due to the change in House \nmail policy, the U.S. Capitol Police will refuse sealed-package \ndeliveries to all House Office Buildings. For questions, or if you \nencounter technical problems, please call (202) 225-1721.\n      \n\nFORMATTING REQUIREMENTS:\n\n      \n    The Committee relies on electronic submissions for printing the \nofficial hearing record. As always, submissions will be included in the \nrecord according to the discretion of the Committee. The Committee will \nnot alter the content of your submission, but we reserve the right to \nformat it according to our guidelines. Any submission provided to the \nCommittee by a witness, any supplementary materials submitted for the \nprinted record, and any written comments in response to a request for \nwritten comments must conform to the guidelines listed below. Any \nsubmission or supplementary item not in compliance with these \nguidelines will not be printed, but will be maintained in the Committee \nfiles for review and use by the Committee.\n      \n    1. All submissions and supplementary materials must be provided in \nWord or WordPerfect format and MUST NOT exceed a total of 10 pages, \nincluding attachments. Witnesses and submitters are advised that the \nCommittee relies on electronic submissions for printing the official \nhearing record.\n      \n    2. Copies of whole documents submitted as exhibit material will not \nbe accepted for printing. Instead, exhibit material should be \nreferenced and quoted or paraphrased. All exhibit material not meeting \nthese specifications will be maintained in the Committee files for \nreview and use by the Committee.\n      \n    3. All submissions must include a list of all clients, persons, \nand/or organizations on whose behalf the witness appears. A \nsupplemental sheet must accompany each submission listing the name, \ncompany, address, telephone and fax numbers of each witness.\n      \n    Note: All Committee advisories and news releases are available on \nthe World Wide Web at http://waysandmeans.house.gov.\n      \n    The Committee seeks to make its facilities accessible to persons \nwith disabilities. If you are in need of special accommodations, please \ncall 202-225-1721 or 202-226-3411 TTD/TTY in advance of the event (four \nbusiness days notice is requested). Questions with regard to special \naccommodation needs in general (including availability of Committee \nmaterials in alternative formats) may be directed to the Committee as \nnoted above.\n\n                                 <F-dash>\n\n    Chairman MCCRERY. The Subcommittee hearing will come to \norder. Good afternoon, everybody. Welcome to our fifth in a \nseries of hearings on high-risk issues related to Social \nSecurity numbers (SSNs). Today, we will examine the use of SSNs \nby government agencies, businesses, and others, as well as \nexplore options for improving the confidentiality of SSNs.\n    For many years, this Subcommittee has worked to protect SSN \nprivacy. For example, the Committee on Ways and Means approved \nbills in the 108th and 106th Congresses that were introduced by \nmy predecessor, Subcommittee Chairman Clay Shaw. Some of the \nprovisions from Mr. Shaw\'s bill in the 108th Congress have \nbecome law, including limits on replacement SSN cards and a \nprohibition on the display of SSNs on drivers\' licenses.\n    The SSN plays a key role in both our government and in our \neconomy. Since the SSN is a unique number for each person and \nis widely used, it helps link records at all levels. This, in \nturn, facilitates administration of government services and \nbenefits, business transactions, and fraud prevention. However, \nonce this essential piece of information is in the hands of \nidentity thieves, it opens a Pandora\'s box of problems. Stolen \nSSNs can damage lives and businesses\' bottom lines.\n    Today, we will hear about the current patchwork of Federal \nand State laws that provide limited and inconsistent \nconfidentiality protection for SSNs. For example, financial \ninstitutions are restricted in their ability to release SSN \ninformation, but SSNs may appear in any number of publicly \navailable government records, such as court records or property \nownership records.\n    Computers and the Internet have enabled unprecedented \ninformation sharing, and anyone who collects, uses, or shares \nSSN information has a responsibility to protect its \nconfidentiality. Today, we will hear about some of the \nvoluntary steps that government agencies, businesses, and \nothers are taking to protect SSNs from unauthorized disclosure. \nWe also will have the opportunity to explore options for \nimproving SSN protections.\n    These options involve complicated trade-offs. In some \ncases, Federal laws and regulations require the collection of \nSSNs to achieve certain goals, such as efficient and accurate \ntax administration, child support enforcement, and \nidentification of money launderers and terrorists. As we \nexamine alternatives for improving SSN privacy to help prevent \nidentity theft, we must consider the potential effect on the \nattainment of those goals. We must also be mindful of the costs \nthat individuals, businesses, and government agencies may incur \nas a result.\n    By carefully examining all options to keep SSNs out of the \nhands of identity thieves and by listening to as many \nstakeholders as possible, we seek a balance between protecting \nSSN privacy and allowing its use for legitimate and necessary \npurposes. Mr. Levin?\n    Mr. LEVIN. Mr. Chairman, since I basically agree with your \nopening statement and since both of our colleagues here, I \nwould simply ask that my opening statement be placed in the \nrecord.\n    Chairman MCCRERY. Without objection. Thank you, Mr. Levin.\n    [The prepared statement of Mr. Levin follows:]\n\nOpening Statement of The Honorable Sander M. Levin, a Representative in \n                  Congress from the State of Michigan\n\n    The problem of identity theft is serious and growing, claiming \nalmost 9 million victims and costing our economy an estimated $50 \nbillion a year. The issue within our Committee\'s jurisdiction--\nprotecting the Social Security Number--is just one piece of a total \nstrategy to address identity theft, but it is an important one. \nGovernment agencies and the private sector must both do their part to \nprevent and detect identity theft.\n    When it comes to the Social Security number, the critical issue is \nstriking the right balance between allowing beneficial uses of the \nnumber and protecting privacy for individuals. The rapid advance in \ntechnology in recent years has greatly aggravated the problem of \nidentity theft. Identity thieves no longer have to rifle through \npeople\'s trash in search of private information. They increasingly \nobtain this information by tapping into computer databases and other \nhigh-tech means.\n    Given the evolving nature of the problem, there is a clear need for \nongoing oversight. I look forward to hearing more about the issues and \noptions from our witnesses.\n    In the past, our Subcommittee has been able to work to find this \nbalance in a genuinely bipartisan way, with Republicans and Democrats \nsitting across the table and coming to agreement on the issues. I hope \nwe will be able to continue in that tradition, and work closely \ntogether to act on the information we receive today.\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Our first panel today is composed of two \ndistinguished colleagues, Mr. Dreier and Mr. Reyes, each of \nwhom have expressed an interest in the issues that this \nSubcommittee has been exploring for some time now. They were \nsupposed to be here last time, but we had a series of votes, \nand in an effort to not prolong the necessity for other \nwitnesses to stay, we asked these two colleagues if they could \ncome today, and they graciously agreed to do that.\n    Welcome, gentlemen. We are interested in your views on this \nsubject. We would like for you to try to summarize those views \nin about 5 minutes, and we will start with my colleague from \nCalifornia, Mr. Dreier.\n\n STATEMENT OF DAVID DREIER, A REPRESENTATIVE IN CONGRESS FROM \n                    THE STATE OF CALIFORNIA\n\n    Mr. DREIER. Thank you very much, Mr. Chairman. Let me begin \nby expressing my appreciation to you for the hard work that you \ndo in dealing with this issue of Social Security and the \nspecific issue you are tackling right now, and to Mr. Levin and \nMr. Johnson and Mr. Brady, I thank all of you for being here. I \nknow we have completed our votes on the floor, but this is a \nvery important issue.\n    Mr. Reyes and I have come together in a bipartisan way to \ndeal with an issue that is getting a great deal of attention. \nThe issue is immigration reform and border security. I don\'t \nknow if any of you all recall that we dealt with that back in \nDecember and our colleagues in the other body are tackling that \nquestion right now, as to how they move ahead this week and \nnext on this issue.\n    Virtually everything that we do focuses on the supply side \nof the immigration problem. On border security, what is it that \nwe did? Well, we talked about building a 700-mile wall. We \ntalked about dramatically increasing the size of the Border \nPatrol, a lot of things that are designed to stem the flow of \npeople coming into this country illegally.\n    What is it that we really haven\'t done? We haven\'t spent \nmuch time and effort looking at why it is that they come to the \nUnited States of America. That is why Mr. Reyes and I, with the \nencouragement of T.J. Bonner, who is the President of the \nNational Border Patrol Council, which is the union of Border \nPatrol agents, said, let us not just look at the supply side. \nLet us focus on the demand side here.\n    Why is it that people come into this country illegally? \nThey come here, 98 percent of them, for one reason and one \nreason only. They come here looking for a job. They are looking \nto feed their families. They are looking for economic \nopportunity. We all know that. Of the 12 million people who are \nin this country illegally, we know that nearly all of them are \nhere as productive members of society, working, paying taxes, \ndoing things that need to be done in this country.\n    We know that they are here illegally and there is a strong \nsense that we need to take action. We need to take action to \ndeal with it.\n    Right now, there are 94 different combinations of \ndocuments, including that flimsy little Social Security card \nthat was first put into place in 1935, that has not been \nupdated once since 1935, that are used for a potential employee \nto go to a potential employer and get a job--94 different \ncombinations of documents, including a school ID card, a \nlibrary card. What Mr. Reyes and I have come together to do is \nvery simply to say, why don\'t we make an attempt to put into \nplace a smart, counterfeit-proof Social Security card with an \nalgorithm strip on the back of it, an algorithm strip which \nwould simply go in and look at the data that is already there. \nNo new data--the government would not get its hands on any new \ndata at all.\n    This counterfeit-proof card--actually, I carry a \ncounterfeit example of my counterfeit-proof card, this is an \nold Union 76 credit card and I have just put the Social \nSecurity on the top of the card. I used T.J. Bonner\'s picture, \nsince this was his idea, and his photo is here, and you would \nhave an algorithm strip on the back.\n    Someone is going in, Mr. Chairman, to look for a job. The \npotential employer decides, I might want to hire this person. \nThey either swipe this card or call an 800 number. They dial \nthe 800 number and it goes into a databank which is simply \ntaking the SSN, linking it with the U.S. Department of Homeland \nSecurity (DHS), and the only information that would go out is \nyea or nay. Is this person a qualified worker or not a \nqualified worker?\n    We put on the bottom of this that this is not a national ID \ncard. I know that from testimony you all have had in the past, \nfrom your last hearing, I understood that real concern is \nraised about if it looks like a duck, walks like a duck, acts \nlike a duck, talks like a duck, it may be a duck. The fact is, \nthis is not a national ID card. Why? The only utilization of \nthis card will be for, number one, Social Security purposes, \nwhich are correct, and number two, applying for a new job.\n    Now, as I look around this room, I feel pretty sanguine \nthat everybody here, including Xavier Becerra, will be \nreelected as they head toward this November election.\n    Mr. BECERRA. Is that an endorsement?\n    Mr. DREIER. You don\'t want my endorsement, Xavier.\n    [Laughter.]\n    That might jeopardize it, if you had my endorsement. The \nfact is, only people looking, Mr. Chairman, for a new job would \nbe required to carry this. A senior citizen would never have to \nhave a counterfeit-proof Social Security card. Someone who is a \nsmall business man or woman would never have to have a \ncounterfeit-proof Social Security card.\n    What we have got is we have got a situation where the \nmagnet that draws people across the border is jobs, and if the \nthumbs-down comes from this card from the databank that is \nalready there, we in our legislation increase the penalty \ndramatically and we increase enforcement dramatically. By 400 \npercent, we increase the penalty, from $10,000 to $50,000 for \nhiring, and we have a 5 year prison term, and we also increase \nby 10,000 the number of enforcement agents.\n    Now, you and I were talking yesterday about this and I know \nthat everyone in this room pays their taxes simply because they \nare patriotic Americans, but there may be some people out there \nwho realize that the Internal Revenue Service (IRS) is there \nand that may be the reason that as April 15 approaches, they \nwill be paying their taxes. I know none of us are among those.\n    Similarly, if we were to see four or five high-profile \narrests due to people who were knowingly hiring those who are \nhere illegally, I am convinced that we would see a great \ndiminution of the number of hirings taking place. I am \nconvinced that we have, if not the panacea, we have the ability \nto look at what deals with 98 percent of the people who come \nhere illegally to help us address this issue.\n    Mr. Chairman, I think we have got a great opportunity to do \nsomething here and I am pleased that Members of the Hispanic \nCaucus have joined. Again, it is a very, very bipartisan \nmeasure. It is my hope that as we look at the issue of \nimmigration reform, we will be able to recognize that this is \nbetter for the employer, easier for the businessman or woman \nwho is looking to hire someone, because they don\'t have to look \nat 94 different combinations of documents and they are free of \nresponsibility once they have gotten a yea or nay on it. It is \ngoing to help us deal with this very serious problem that we \nhave of illegal immigration and finally see the Social Security \nAdministration (SSA) bring that flimsy little paper to which I \nwas referring into the 21st century.\n    Thank you very much.\n    Chairman MCCRERY. Thank you, Mr. Dreier.\n    [The prepared statement of Mr. Dreier follows:]\n\n Statement of The Honorable David Dreier, a Representative in Congress \n                      from the State of California\n\n    Chairman McCrery, Ranking Member Levin, Members of the \nSubcommittee, thank you for providing this opportunity to appear before \nthe Subcommittee\'s hearing on Social Security high risk issues. \nSpecifically, I would like to discuss the merits of legislation I \nauthored with my friend from El Paso, Mr. Reyes, H.R. 98, the Illegal \nImmigration Enforcement and Social Security Protection Act, and how it \nwould help to crack down on the hiring of illegal immigrants and curb \nabuse of the Social Security number and card. I have submitted \ntestimony for the record to two of your previous hearings on this \nmatter, so I\'ll keep my statement somewhat brief. I want to have ample \ntime to answer your questions.\n    As I mentioned in previous written testimony, there are 94 \ndifferent combinations of documents on the current I-9 form that can be \nused to establish identity and employment eligibility. The Social \nSecurity card is one such document. Because the process by which job \nseekers prove their employment eligibility is so unwieldy and \ncomplicated, it plays right into the hands of illegal immigrants who \ncan obtain or copy Social Security numbers and cards. In fact, easy \nemployment powers the job-magnet that draws people to illegally enter \nour country. That is why Mr. Reyes and I authored H.R. 98. We need to \naddress the ``demand-side\'\' of the illegal immigration issue.\n    H.R. 98 makes the Social Security card fraud-proof and provides \nemployers with a tamper-free tool to verify work authorization status. \nThis will come as a great relief to employers who have been forced to \nact as immigration and document experts. Under the bill, the Social \nSecurity Administration (SSA) is required to issue cards that contain a \ndigitized photo of the cardholder, as well as other countermeasures to \nreduce fraud. This includes replacing the flimsy Social Security \nbanknote paper with a durable plastic or similar material. Also, each \ncard will contain physical security features designed to prevent \ntampering, counterfeiting or duplication.\n    In addition, this card will have an electronic signature strip that \ncontains an encrypted electronic identification code unique to that \nindividual. Employers could verify worker eligibility via a Department \nof Homeland Security (DHS) database by swiping the card through an \nelectronic card-reader or simply calling a toll-free number. The \nemployer would know instantaneously whether or not they were permitted \nto hire the individual in question. As my colleagues on the \nSubcommittee know, the House-approved border control bill directs SSA \nto study the implementation and feasibility of such a proposal.\n    I understand that privacy concerns have been raised regarding H.R. \n98; that the bill would create a national ID card. Let me just say \nunequivocally that H.R. 98 does not create a national ID card. In fact, \nsection 11 of the bill unconditionally prohibits the use of the Social \nSecurity card as a national ID card. Let us not forget that job \napplicants, under current law, are already required to show documents \nthat establish their identity and employment eligibility. Many, if not \nmost, choose to show their employer the combination of a photo ID and \ntheir Social Security card. Eliminating a step by actually placing the \nphoto on the Social Security card itself doesn\'t take us any further \ndown the road of creating a national ID card.\n    The only time anyone would actually be required to carry the \nimproved Social Security card would either be for Social Security \npurposes or when they are applying for a new job. H.R. 98 explicitly \nstates that individuals cannot be required to carry the new card, \nexcept for these two purposes. And the card itself will contain a \ndisclaimer stating: ``This card not to be used for the purpose of \nidentification.\'\' Social Security cards had a similar disclaimer from \n1946 to 1972.\n    I also understand that concerns have been raised regarding the \nprivacy and security of the employment eligibility database created \nunder H.R. 98. Let me just say that no one is more sensitive to \nconcerns about privacy and data security than I am. But let\'s remember, \nI wouldn\'t be sitting here in front of you today if we were already \ndoing a great job of securing our Social Security and immigration \nsystems. Nonetheless, we have taken great care to ensure the integrity \nof the Employment Eligibility Database which H.R. 98 creates. \nSpecifically, the bill prohibits the use of any information in the \ndatabase by any DHS employee for any purpose other than administering \nthe database, and it requires DHS to limit access to the database to \nonly those employees who administer the database.\n    We also need to keep in mind that the government already has the \ninformation that would be contained on this new Social Security card. \nAn individual\'s eligibility to work under the law is dependent on \nwhether they are a U.S. citizen, and if not, their immigration status. \nSSA already maintains citizenship and immigration status files for each \nworker issued a Social Security card, and our legislation would not \nrequire them to gather any additional information than they do \ncurrently.\n    The only thing H.R. 98 does is allow the information that SSA \nalready collects to be used for the purpose of verifying a prospective \nemployee\'s eligibility to work--via the DHS database--and the \nauthenticity of their Social Security card. This streamlines two \nseparate pre-existing government functions: determining a person\'s \neligibility to work and ensuring that employers do not hire anyone \nineligible to work.\n    Mr. Chairman, in recent years, we have improved the security of \nalmost every government-issued document, passports, green cards, \ndriver\'s licenses, save one--the Social Security card. With over five \nmillion cards issued annually, we need to realize that it\'s time to \nbring the Social Security card into the 21st Century. In the process, \nwe will end the magnet of jobs for illegal immigrants.\n    I believe that H.R. 98 represents an excellent starting point to \nsecure the Social Security card and enhance our efforts to stop the \nhiring of illegal immigrants. I look forward to working with the \nMembers of the Subcommittee to reach these important goals.\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Now, our colleague from Texas, Mr. Reyes.\n\nSTATEMENT OF SILVESTRE REYES, A REPRESENTATIVE IN CONGRESS FROM \n                       THE STATE OF TEXAS\n\n    Mr. REYES. Thank you, Mr. Chairman, Mr. Levin, fellow \ncolleagues. I am pleased to be here with my good friend and \ncolleague from California, and I just want to make three \npoints, but before I make those points, I want to tell you that \nin 1986, when the Immigration Control and Reform Act (P.L. 99-\n603) (IRCA) was passed, it had a provision for employer \nsanctions in there. Had Congress provided the resources to INS, \nBorder Patrol back then, we wouldn\'t be having the debates that \nwe are having today.\n    Fast forward to 2006 and the three points that I want to \nmake are that, as my colleague stated, the technology has \ngotten to the point where we feel very confident that a Social \nSecurity card with biometrics and algorithm and all the other \nthings that have been mentioned were included, it would be safe \nto say--I always hesitate from the law enforcement background \nthat something is counterfeit-proof, but it would be very hard \nto replicate with the kind of technology that is available \ntoday. You need that card that would, in essence, relieve any \nemployer from the responsibility of having to look at and file \nas many as nine and ten documents, as the I-9 provision \ncurrently requires, with the fraud-proof Social Security card.\n    The second point I want to make is that along with that \ncard, you need a system, a system where an employer, once he is \npresented with that card, can check and verify whether it is \nthe individual. If there is a question, they can ask somebody \nto come out and check it out or maybe check it out through the \ncomputer. Those systems exist today. They are not cheap, but I \nwould say they are a lot cheaper than all of these other \nproposals that have been--and not as controversial as the ones \nthat have been proposed in the bill that we passed in December, \nthe wall, taking citizenship, all these things that are very \ncontentious.\n    The third point I want to make is that adequate resources \nmust be provided along with it. No system is good if you don\'t \nprovide the resources for checks. You have got to provide the \nmoney. You have got to provide the people. Our bill does that.\n    Those are the three basic points I wanted to make. I have a \nstatement that I would like to include into the record, but \nnow, being respectful of your time, I will yield back the \nbalance of my time, subject to any questions you might have for \nme or for my colleague.\n    Chairman MCCRERY. Thank you, Mr. Reyes.\n    [The prepared statement of Mr. Reyes follows:]\n\n    Statement of The Honorable Silvestre Reyes, a Representative in \n                    Congress from the State of Texas\n\n    Good afternoon. I would like to thank Chairman Jim McCrery and \nRanking Member Sander Levin for giving me the opportunity to testify \nbefore this Subcommittee today about the role a new, improved Social \nSecurity card could play in allowing employers to determine whether \nprospective employees are authorized to work in the United States and, \nultimately, in helping to curb illegal immigration.\n    I believe I come to this hearing with a somewhat unique perspective \non this important issue. My district of El Paso, Texas--along with its \nsister city, Ciudad Jurez, Mexico--comprise the largest metropolitan \narea on the United States-Mexico border. Also, prior to coming to \nCongress, I was in the United States Border Patrol for 26\\1/2\\ years. I \nserved as Chief, first in the McAllen sector and subsequently in the El \nPaso sector from 1984 until my retirement in 1995. I have also done my \nshare of interior immigration enforcement at work sites where \nundocumented aliens were employed.\n    As the only Member of Congress with a background in immigration and \nexperience defending our nation\'s borders, I have firsthand knowledge \nof what we need to do to reduce illegal immigration and help keep \nAmerica safe. I have witnessed the difference that strong enforcement \nof employment laws can make in discouraging attempted illegal entries \ninto the United States. Furthermore, I believe that a fraud-proof \nSocial Security card, coupled with a computerized employment \neligibility verification system and properly enforced employer \nsanctions, could be a critical part of that effort.\n    In 1986, Congress passed the Immigration Reform and Control Act, \nwhich included new sanctions against employers who hire illegal \nimmigrants. After that law was enacted, in parts of the country such as \nthe border region where those of us in law enforcement had the \nresources to enforce those sanctions, we saw a significant decrease in \nthe number of people trying to enter the country unlawfully. Clearly, \nonce word got out that employers would not hire illegal immigrants, a \nmajor incentive to enter the United States was greatly reduced and \nattempted entries dropped off considerably.\n    I have been pleased to work with my friend and colleague from \nCalifornia, Rep. David Dreier, on H.R. 98, the Illegal Immigration \nEnforcement and Social Security Protection Act of 2005. The bill would \nsubstantially expand and improve on the 1986 provisions by enhancing \nthe security of Social Security cards and allowing employers to \ninstantaneously verify a prospective employee\'s eligibility to work in \nthe United States. The bill would also increase civil and criminal \npenalties for employers who hire illegal immigrants or fail to verify \ntheir employment eligibility.\n    If properly funded and with appropriate oversight and privacy \nprotections, H.R. 98 would be an important step toward halting the flow \nof people seeking to enter the United States illegally in order to find \nemployment. By doing so, our immigration and border security personnel \nwill be able to focus more of their time, effort, and resources on \nthose who may be trying to enter the country to do us harm.\n    As you continue to hold hearings on important Social Security \nmatters, I encourage this Subcommittee to consider how a next-\ngeneration Social Security card and employment eligibility system could \nhelp address some of the urgent immigration matters we face in this \ncountry.\n    Again, thank you for allowing me to testify today, and I look \nforward to continuing to work with my colleagues on this important \nissue.\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Both of your statements will be included \nin the record. Your written statements will be included in the \nrecord in their entirety.\n    Mr. Dreier, you said the employer would either swipe the \ncard or call an 800 number. Explain that. What 800 number would \nthey call?\n    Mr. DREIER. Basically, what that would mean is that there \nwould be a databank, the information, again, that the \ngovernment already has, known information. Is someone an \nAmerican citizen? Are they here on an H-2A visa, which is \nbasically a farmworker visa, some other kind of work permit? \nThey would simply be told yes or no. This person who is \napplying for a job to work in your company is, in fact, a \nqualified worker, and----\n    Chairman MCCRERY. If you are an employer and you call this \n800 number, what do you say?\n    Mr. DREIER. What you do is you provide the information that \nis there, the SSN, and obviously the goal would be to have a \nswipe for people so that they would be able to utilize the \nalgorithm strip. There would be a transition period, clearly, \nthrough which they would go that would--obviously, a big \nchallenge----\n    Mr. REYES. Mr. Chairman, if I can just add to that, if you \ndon\'t mind----\n    Chairman MCCRERY. Sure.\n    Mr. REYES. What happens today when you go into a restaurant \nor you go into a shop and you pay with a credit card, they put \nit into the system. They swipe it or they insert it in the \nmachine-readable system. If there is an issue or a problem that \nthey think it may not be you or some other thing, then the \nmerchant will call an 800 number and they will verify the \naccount and all these other things.\n    That is what we have in mind here. Remember, we are talking \nabout employers, employers that are already used to, by and \nlarge, as every American is, in utilizing this kind of a \nsystem. It won\'t be exactly a system like the ATM or the credit \ncard system, but it will be similar, with the card sufficing as \nproof that it is the individual, that it was presented to the \nemployer, and the employer, in fact, verified it. Any other \nquestions in there about that, there is an 800 number. They \npick up the phone, they call and they talk to either a call \ncenter or a DHS system that would answer any questions and, \nagain, would relieve the employer of the liability because they \nhave gone and made a good faith effort.\n    Chairman MCCRERY. I was just trying to get to the question \nof why the need for a tamper-proof card. If all you need is the \nnumber and you can call an 800 number, it seems to me you would \nneed the card----\n    Mr. DREIER. Well, I think as Mr. Reyes says, it really \nwould be designed as a back-up to deal with----\n    Chairman MCCRERY. With questions?\n    Mr. DREIER. --because the goal is to really utilize this \nalgorithm strip that is there that is----\n    Chairman MCCRERY. Yes.\n    Mr. DREIER. --again, and I think that Silver is right on \ntarget when he says that the notion of saying that something is \n100 percent absolutely counterfeit-proof is a bit of a stretch, \nbut there has been no attempt since 1935 to really move the \nSocial Security card itself into the modern era, and I think \nthat we ought to at least engage in the fight, trying to put \ninto place the most technologically advanced mechanism we \npossibly can to deal with this.\n    Chairman MCCRERY. Would you put a picture on the----\n    Mr. DREIER. Yes, it has a photograph on it.\n    Chairman MCCRERY. It has a photograph on the card, so that \nwould be----\n    Mr. DREIER. When a person becomes of working age--I know \nthat some people have raised this question, well, would you put \nthe baby picture on, because people get their Social Security \ncard. It is when in their State they would become of working \nage that the photo-embedded item would be provided on there.\n    Chairman MCCRERY. Okay. Mr. Levin?\n    Mr. LEVIN. I am tempted to ask a question, but I think it \ninvolves larger issues. For example, what would happen to the \npeople of working age, the 12 million who are here now \nillegally?\n    Mr. DREIER. Well, I am happy to answer that question. I \nthink that part of the goal here is that since we are focusing \non this question, if 98 percent of the people who come here \nillegally are coming to get a job, and with a tamper-proof, \nsmart, counterfeit-proof, whatever you want to call it, Social \nSecurity card, they can\'t get a job, my sense is that many of \nthem might choose to return to a country of origin. I am not \nsaying that absolutely everyone, but I am convinced that would \ngo a long way toward dealing with this overall sweeping problem \nthat we are dealing with of our border security and the problem \nof illegal immigration.\n    Mr. LEVIN. I guess my question does open up a larger issue, \nso we will leave it for another day since the Senate is kind of \nmonopolizing discussion at the moment.\n    Mr. DREIER. That is why we should weigh in over here a \nlittle bit this week on it.\n    Mr. LEVIN. Okay. Thank you.\n    Chairman MCCRERY. Well, obviously, if we went to a guest \nworker program of some sort, then that would facilitate getting \nsomething like this----\n    Mr. DREIER. Oh, absolutely.\n    Chairman MCCRERY. --that could be used for----\n    Mr. DREIER. I will say that I believe that as we do this, \nit is imperative that we have a responsible, non-amnesty-\ngranting temporary worker program that does go hand-in-hand \nwith this so that we can meet the economic demand that exists \nin this country and then tackle the question that you correctly \nraise.\n    Mr. REYES. If I can just----\n    Chairman MCCRERY. Please.\n    Mr. REYES. We come together on offering this as one part of \nthe solution, but I do believe that we have got to have \ncomprehensive immigration reform. We have got to have secure \nborders. We have got to have a guest worker program, which this \nwould fit in with. Then you have got to take care of, as \nCongressman Levin said, you have got to take care of those \npeople that have been in this country, paying their taxes, \nbeing part of our community. That is what I think would be a \nrealistic way to implement this.\n    What this does is it becomes part of the mechanism of \nmaking sure that we don\'t have the magnet--I can tell you from \npersonal experience, after IRCA, we saw a dramatic downturn in \nattempted illegal entries for about 3 years. Some areas of our \nborder--I was chief in McAllen at the time with Border Patrol--\nsome areas of our border saw a decline in attempted entries \ninto this country of as much as 80 percent. The reason for that \nwas the publicity that was generated that, for the first time, \nthere were employer sanctions in place. You would not be able \nto get a job. The attraction of undergoing that arduous trip \nthrough the border and trying to get a job somewhere in this \ncountry was gone.\n    It wasn\'t until about 3 years into the program that people \nstarted realizing, well, Congress didn\'t allot the personnel to \ncheck, so my uncle or my cousin or my friend said that if you \ncan make it to Denver, you can still get a job. Even though it \nhad the requirements of the I-9, there were no teeth in the \nlaw.\n    I think that this on its own probably is not the whole \nsolution, but it gets us part of the way, and then \ncomprehensive immigration reform, I think would take us the \nrest of the way.\n    Mr. DREIER. Mr. Chairman, what this really does is, again, \nas we look at this question, why is it that people come into \nthis country illegally, they come seeking a job. People use a \nSocial Security card, often a fraudulent one, to get a job and \nthis is the way to end that demand side, the magnet that draws \nthem in, by having a structure in place like this. I agree \nthat, overall, this is not the panacea, but I think that this \nwill go an awful long way toward addressing this issue.\n    Chairman MCCRERY. Mr. Johnson?\n    Mr. JOHNSON. Thank you, Mr. Chairman. I am wondering how \neasy it is to duplicate a card like that.\n    Mr. DREIER. It is a great question, Sam, and I will tell \nyou that one of the things that we have done is we have said \nthat nothing has been done since 1935.\n    Mr. JOHNSON. Right.\n    Mr. DREIER. I believe that with the technological advances \nthat are made, that it would be, I hope, impossible to \nduplicate it. There are no guarantees, but we should do every \nsingle thing within our power to, after these many decades \nhaving done nothing, use the technology that we have today to \nensure that it is as tamper-proof, as smart, as counterfeit-\nproof as we possibly can.\n    Mr. JOHNSON. I couldn\'t agree with you more. What kind of \nupgrade are you going to have to have to get--business offices \ndon\'t have the ability to scan cards, a lot of them.\n    Mr. DREIER. Well, that is a great question, and obviously \nthis is something that would have to be phased in over a period \nof time. At the end of the day, I think that it would be easier \non businesses because of the fact that they don\'t have to look \nat these 94 different combinations of documents, and I am, \nfrankly, offended by a lot of this stuff where you would ask \none person whether or not they are an American citizen and not \nanother person based in the way someone might look. I am very \noffended by that. I think that the existence of this card will \ngo a long way toward helping that. Obviously, we will have to \ndeal with businesses as they look at the challenge of having \nthe equipment----\n    Mr. JOHNSON. Yes, there is going to be a cost involved. You \nare from California, and you have got a lot of agricultural \nmigrant workers out there. How are you going to get them a \ncard?\n    Mr. DREIER. You know what? The fact----\n    Mr. JOHNSON. Are we going to--let me rephrase it a little \nbit.\n    Mr. DREIER. Sure.\n    Mr. JOHNSON. Guys that come across legally for migrant \nwork, are we going to give them some kind of an identification?\n    Mr. DREIER. Well, see, what they would have on this is they \nwould, within the database, it would be stated that they are \nhere, if it is an H-2A visa or any kind of work permit, that \nwould mean that they are a qualified worker by virtue of it. If \nwe do end up with some kind of responsible non-amnesty-granting \ntemporary worker program, someone who is here under that would \nbe able to have this card for those purposes. If someone is \nhere illegally and they don\'t have a card and they are hired, \nthen that employer would be subjected to a, as I said, a 400-\npercent increase in the fine, 5 years in prison, and we hire \n10,000 enforcement agents to make sure that this is enforced, \nwhich gets back to Silver\'s point, which is a very important \none.\n    If you look at IRCA, we coupled amnesty with sanctions and \nunenforced sanctions is what ended up once again reigniting \nthis flow of people in illegally----\n    Mr. JOHNSON. Well, that is what I was about to say. If you \ndepend on the employer, they are not going to do it.\n    Mr. DREIER. Exactly.\n    Mr. JOHNSON. Thank you, Mr. Chairman.\n    Mr. DREIER. I will say that I didn\'t believe that the \nemployer should be turned into a Border Patrol agent.\n    Mr. JOHNSON. I agree.\n    Mr. DREIER. That is one of the concerns that I have, and I \nknow we share that. I voted against the--I was here in 1986 and \nvoted against IRCA for that reason.\n    Mr. JOHNSON. Thank you.\n    Chairman MCCRERY. Thank you, Mr. Johnson. Mr. Becerra?\n    Mr. BECERRA. Thank you to the two of you for being here and \nmaking your presentation. It is rather interesting. We are \nabout to have witnesses who will come and give us testimony on \nthe Social Security card, the use of the number, and so forth, \nand we have had over the course of actually the last few years \na number of hearings. Last session, we passed out, without a \nsingle ``no\'\' vote, legislation by Representative Shaw to \nactually restrict the use of the SSN. It is interesting, \nbecause your proposal would make it the universal identifier \nand we are about to hear from witnesses who are going to tell \nus why there are problems in allowing the number to be more \nuniversally available. It is a fascinating discussion.\n    We need to figure out a way to be able to identify folks. \nRight now, the SSA would tell you, if they were here to \ntestify, that just by having a number, we can\'t tell you, or \nthey can\'t tell us if that individual is a citizen----\n    Mr. DREIER. Absolutely.\n    Mr. BECERRA. --or not. They may or may not be able to tell \nus whether that person is here legally. You would have to do a \nlot of work before you could get the SSN to become a national \nidentification number.\n    Mr. DREIER. Well, we don\'t want it to be that, though. We \ndon\'t want it to be a national ID card. In fact, as I said, we \nactually have on this card that it is not a national ID card \nand it is used only for Social Security purposes and when \napplying for a new job.\n    Mr. BECERRA. Okay, so then, Mr. Chairman, let me ask you \nthis. What are you going to tell all the credit bureaus, the \nbanks, all the folks, all the industries that currently use the \nSSN--hospitals used to use them publicly as the patient \nidentification number--what do you tell all those industries \nthat are telling us right now, you can\'t do more to restrict \nour utilization of the number because that has become our \nuniversal identifier within our industry?\n    Mr. DREIER. You see, that is up to them. What I have said \nis a national ID card, getting on board an airplane, utilizing \nit for a Federal purpose, which is really what we are in the \nbusiness of doing. The way some private entity or a State or \nlocal entity handles the use of this number and card is their \nbusiness----\n    Mr. BECERRA. Would you prohibit the use for any other \npurposes?\n    Mr. DREIER. Yes, I am not saying--I am not saying that it \ncan\'t be used, because I don\'t want to in any way restrict the \nSSN from being utilized for purposes that we determine are \nnecessary. All I am saying is that I don\'t want the use of a \nsmart, counterfeit-proof Social Security card to be \nmisinterpreted as some sort of national identification card. \nThat is all I am arguing.\n    Mr. BECERRA. The thing there, David, is if indeed it is a \nstrong identifier that has good firewalls from abuse, then it \nis going to become a great identifier for a lot of other folks, \nas well. If it works well for identifying whether or not you \nare entitled to work in this country, someone is going to say, \nwell, it is probably going to work well to identify whether or \nnot you have got good credit or whether or not we should offer \nyou this mortgage. I think we have to be very careful. Unless \nyou prohibit its use for other purposes----\n    Mr. DREIER. I think that is something we might consider \nlooking at, if you want to.\n    Mr. REYES. If I can say something, currently--I just became \na grandfather for the third time. When your baby is born, he or \nshe gets a Social Security card.\n    Mr. BECERRA. Yes.\n    Mr. REYES. When you volunteer for the Army or the Navy, the \nMarine Corps, the Air Force, your Social Security card becomes \nyour identifier. When I was drafted, I was given a number, RN-\n18746717. You never forget that. Today\'s service people use \nthat Social Security card for those purposes. I don\'t know \nthat--and maybe David has given it more thought, but I haven\'t \ngiven it a lot of thought in terms of why you would want to \npreclude or limit somebody\'s ability to use the SSN when I \nknow----\n    Mr. BECERRA. If you were to stay a little longer, you would \nhear testimony by someone who actually had her SSN misused for \nidentity purposes----\n    Mr. REYES. See, even in this system, I think here is what \nis important about having the system. I made the three points. \nThe system would tell you if somebody else is using the same \nnumber, because in today\'s technology, the availability--if \nsomebody presents--say, for instance, somebody came up with a \nsystem of----\n    Mr. BECERRA. Yes, but by then, it is too late----\n    Mr. REYES. No----\n    Mr. BECERRA. --for the person who had his or her identity \nstolen.\n    Mr. REYES. The point is, it will raise an alert when that \ncard is presented. It is like--and I don\'t know how they work \ncurrently on use of credit cards, but I know that occasionally \nwhen I give a credit card, especially when you travel out of \nthe country, they will ask for identification. My wife will get \na call at home and say, this purchase was made in London or \nwhatever. We want to make sure that you or your husband is \ncomfortable that one of you is in London.\n    The technology exists that would be able to tell the system \nthat the SSN that was presented in Peoria, Illinois, all of a \nsudden a week later was presented in Los Angeles and maybe \nwithin 72 hours was presented within Miami, so that tells you \nthat number has been compromised somehow and the system alerts \nDHS and they would check all three people that presented that \ncard.\n    Mr. DREIER. Which one of the two of you is making all those \npurchases, too.\n    Mr. REYES. Yes.\n    Mr. BECERRA. Thank you, Mr. Chairman. Thank you, gentlemen.\n    Chairman MCCRERY. Mr. Brady?\n    Mr. BRADY. Thank you, Mr. Chairman, and David and Grandpa \nReyes, it is good to have you here today. I think Xavier\'s \ncomment about SSNs, one of the issues we are struggling with is \nour SSN system already so compromised that we can never really \nbring integrity to the system. Your point is that if Social \nSecurity is going to be a key employer verification in this \nwhole immigration-Border Security debate, make it counterfeit-\nproof. Here is the way to do it.\n    I think, in the end, the question of whether we will have a \ncounterfeit or attempt to create a counterfeit Social Security \ndocument, it isn\'t a matter of if we do but when and how we do \nit, how we structure it, and I know that I supported the House \nbill on border security that passed earlier, or late last year, \nbut I know that today, if we had to rely on the Social Security \nsystem to verify workers in this country, either new or \nexisting, the system would simply crater. It doesn\'t have the \nintegrity, the resources, the technology to do that, so I just \nappreciate you bringing a bipartisan idea to the table and I \nappreciate you, Chairman, letting us hear what some of our \nMembers who are giving this issue some thought a chance to talk \nto us about that.\n    I don\'t really have any questions. Thanks for giving this a \nthoughtful----\n    Mr. DREIER. Let me just thank you very much for that, \nKevin, and say that I believe that we are in a position where \nthis can go a long way toward addressing those identity issues, \nwhich Xavier correctly raised, dealing with the question that \nSandy raised as to exactly what happens to the people who are \nhere, and tackles this whole issue of the credibility of Social \nSecurity and the utilization of the number itself as we head to \nthe future.\n    I had a conversation yesterday with a number of Senators \nabout this. They are in the midst of their debate on this, and \nI should say that this provision is actually included in one of \nthe Senate bills that has been introduced. John Cornyn and Jon \nKyl have introduced legislation that actually includes H.R. 98 \nas an important component of it.\n    It is my hope that we will be able to see this move as \nexpeditiously as possible through so that we can include this \nas part of a comprehensive package, and I certainly leave it up \nto you all to demonstrate for us what the best approach is.\n    Chairman MCCRERY. Thank you, Mr. Brady.\n    Mr. Dreier, Mr. Reyes, thank you very much for being with \nus----\n    Mr. DREIER. Thank you very much for having us.\n    Chairman MCCRERY. --and for showing up today and sharing \nwith us your thoughts.\n    Mr. DREIER. Thanks, Mr. Chairman.\n    Chairman MCCRERY. Our next panel is composed of two \nwitnesses, Ms. Cynthia Fagnoni, Managing Director of Education, \nWork force, and Income Security, United States GAO, and Joel \nWinston, the Associate Director, Division of Privacy and \nIdentity Protection, Bureau of Consumer Protection, Federal \nTrade Commission.\n    Your written testimony will be included in the record in \nits entirety and we would like for you to try to summarize your \nwritten testimony in about 5 minutes, and Ms. Fagnoni, we will \nbegin with you. Welcome.\n\nSTATEMENT OF CYNTHIA M. FAGNONI, MANAGING DIRECTOR, EDUCATION, \n    WORKFORCE, AND INCOME SECURITY ISSUES, U.S. GOVERNMENT \n                     ACCOUNTABILITY OFFICE\n\n    Ms. FAGNONI. Thank you. Thank you, Mr. Chairman, Mr. Levin, \nand Members of the Subcommittee. I am pleased to be here this \nafternoon to discuss ways to better protect the SSN.\n    Although the SSN was originally created as a means of \ntracking workers\' earnings and eligibility for Social Security \nbenefits, today, the number is used for many non-Social \nSecurity purposes. The wide use of the SSN is significant \nbecause once it is obtained fraudulently, it can be used to \ncreate false identities for financial misuse, to falsely obtain \ncredit, or to assume another person\'s identity.\n    Today, I would like to discuss the use of SSNs by \ngovernment agencies and certain private sector entities, \nFederal laws that regulate the use and disclosure of SSNs, and \ngaps that remain in protecting the SSN and what more could be \ndone. My testimony is based on reports GAO has issued over the \nlast several years, many of them completed at the request of \nthis Subcommittee.\n    First, let me begin with the widespread use of SSNs by both \nthe public and private sectors. Federal, State, and county \ngovernment agencies rely extensively on the SSN to maintain \nrecords with unique identifiers and ensure program integrity. \nLast year, we reported that SSNs are available in a variety of \npublic records held by States, local jurisdictions, and courts, \npublic records or documents routinely made available to the \npublic for inspection, such as marriage licenses and property \ntransactions. We also reported that information resellers, \nconsumer reporting agencies, and health care organizations use \nSSNs for a variety of purposes, including verifying a person\'s \nidentity or matching existing records.\n    Earlier this year, we reported that banks, security firms, \ntelecommunications companies, and tax preparation companies \nroutinely obtain SSNs from their customers for authentication \nand verification purposes and sometimes share SSNs with their \ncontractors for limited purposes, such as identification \nrequirements, debt collection, and data storage.\n    Regarding the laws, although Federal and State laws have \nbeen enacted to restrict the use and disclosure of consumers\' \npersonal information, including SSNs, no one law \ncomprehensively regulates the SSN use and protections. \nMoreover, many of the laws enacted are industry-specific and do \nnot apply broadly.\n    Several States have enacted laws to restrict the use and \ndisplay of SSNs. California, for example, has enacted such a \nlaw. Thirteen other States now have passed laws similar to \nCalifornia\'s. Four States--California, Georgia, Nevada, and New \nYork--require notification of security breaches, another \nexample. As a result of such State restrictions, some companies \nnow notify customers of security breaches regardless of where \nthey happen in the country.\n    Although Congress and State legislatures have enacted laws \nthat help to restrict SSN display and protect an individual\'s \npersonal information, we have found gaps in the protection of \nSSNs. We have reported that government agencies at all levels \nlack the uniform approach to ensuring the security of the SSN. \nIn addition, we found that gaps exist in the Federal law and \noversight of different industries that share SSNs with their \ncontractors. SSNs also continue to be exposed on government-\nissued ID cards. Finally, few restrictions are placed on \ninformation resellers to obtain and resell SSNs in the course \nof their business.\n    GAO has made a number of recommendations in proposed \nmatters for Congressional consideration to address these gaps. \nWe propose that Congress pull together a representative group \nof Federal, State, and local officials to develop a unified \napproach to safeguarding SSNs used at all levels of government. \nWe also recommended that OMB advise all levels of government of \nthe applicability of the Privacy Act (P.L. 93-579) and develop \na government-wide policy to ensure a consistent approach for \ndisplaying SSNs on ID cards.\n    Regarding the private sector, we have recommended that \nCongress consider possible options for addressing the gaps in \nthe existing Federal requirements for safeguarding SSNs shared \nwith contractors. We continue to focus on SSN issues, identify \ngaps, and will continue to recommend possible solutions, where \nappropriate.\n    Mr. Chairman, this completes my oral statement. I would be \nhappy to answer any questions you or other Members of the \nSubcommittee may have. Thank you.\n    [The prepared statement of Ms. Fagnoni follows:]\n\n    Statement of Cynthia M. Fagnoni, Managing Director, Education, \n Workforce, and Income Security, U.S. Government Accountability Office\n\n    Mr. Chairman and Members of the Committees:\n    I am pleased to be here today to discuss ways to better protect the \nSocial Security Number (SSN). The SSN was created as a means to track \nworkers\' earnings and eligibility for Social Security benefits. \nHowever, the SSN has evolved beyond its original intended purpose and \nhas become the identifier of choice for public and private sector \nentities, and is used for numerous non-Social Security purposes. This \nis significant because SSNs, along with a name and date of birth, are \nthe pieces of information most often sought by identity thieves. Once \nan SSN is obtained fraudulently, it can then be used to create false \nidentities for financial misuse, assuming another individual\'s \nidentity, fraudulently obtaining credit, violating immigration laws, or \nfleeing the criminal justice system. Recent statistics suggest that the \nincidence of identity theft is rapidly growing. The Federal Trade \nCommission (FTC) estimated that over a 1-year period nearly 10 million \npeople--or 4.6 percent of the adult U.S. population--discovered that \nthey were victims of some form of identity theft, translating into \nestimated losses exceeding $50 billion. FTC also reported that most \nvictims of identity theft do not report the crime, and, therefore, the \ntotal number of identity theft incidences is unknown.\n    Over the last few years Congress and some states have recognized \nthe importance of restricting the use and display of SSNs by both \npublic and private sectors. As a result, federal and state laws have \nbegun to be enacted that to some degree protect individual\'s personal \ninformation, including SSNs. GAO has issued a number of reports and \ntestified before this Subcommittee about the various aspects of SSN use \nin both the public and private sectors. (See related GAO products at \nthe end of this testimony.) Accordingly, you asked us to speak about \nsome of our findings regarding SSN use and protections. My remarks \ntoday will focus on (1) the use of SSNs by government agencies and \ncertain private sector entities, (2) the federal laws that regulate the \nuse and disclosure of SSNs, and (3) the gaps that remain in protecting \nthe SSN and what more could be done.\n    In summary, SSN use is widespread by both the public and private \nsectors. Agencies at all levels of government frequently collect and \nuse SSNs to administer their programs, verify applicants\' eligibility \nfor services and benefits, and perform research and evaluations of \ntheir programs. In addition, SSNs are available in a variety of public \nrecords held by states, local jurisdictions, and courts, appearing in \nrecords that document common life events and transactions, such as \nmarriages and home purchases. Certain private sector entities also use \nSSNs. Information resellers, credit reporting agencies (CRAs), and \nhealth care organizations routinely obtain SSNs from various public and \nprivate sources, and use SSNs for various purposes, such as to build \ntools that verify an individual\'s identity or match existing records. \nIn addition, private sector entities that engage in third party \ncontracting sometimes share SSNs with their contractors for limited \npurposes.\n    There is no one law that comprehensively regulates SSN use and \nprotections. However, certain federal laws have been enacted to \nrestrict the use and disclosure of consumers\' personal information, \nincluding SSNs, but these laws tend to be industry-specific and do not \napply broadly. In addition, certain states had begun to enact their own \nlegislation restricting the use and display of SSNs by public and \nprivate sector entities, which has subsequently led other states to \nstart enacting similar regulation. Finally, Congress is currently \nconsidering several proposals to restrict SSN use and display, similar \nto state legislation.\n    Although some action has been taken at the federal and state level \nto protect SSNs, more could be done. In our prior work, we found gaps \nin the practices for protecting SSNs by government agencies and across \nindustry sectors. As a result, we made recommendations to federal \nagencies to address the issues we found and proposed matters for \nCongress to consider. For example, we found that certain measures that \ncould help protect SSNs are not uniformly in place at all levels of \ngovernment. In addition, there are gaps in the federal law and \noversight in different industries that share SSNs with their \ncontractors, and there are few restrictions placed on certain entities\' \nabilities to obtain and use SSNs in the course of their business. \nFinally, SSNs are widely exposed in a variety of public records and are \nstill subject to exposure on identity cards issued under federal \nauspices. To address some of these issues, we made recommendations and \nproposed matters for congressional consideration. For example, to \naddress gaps in the government uses of SSNs and the exposure of SSNs in \npublic records and on identification cards, we advised Congress to \nconvene a group of government officials to develop a unified approach \nto safeguarding SSNs. To address the gaps in federal laws that would \napply to industries that share SSNs with their contractors, we \nrecommended Congress consider options to restrict the use and display \nof SSNs to third party contractors.\nBackground\n    The Social Security Act of 1935 authorized the Social Security \nAdministration (SSA) to establish a record-keeping system to manage the \nSocial Security program, which resulted in the creation of the SSN.\\1\\ \nThrough a process known as ``enumeration,\'\' unique numbers are created \nfor every person as a work and retirement benefit record. Today, SSA \nissues SSNs to most U.S. citizens, but they are also available to non-\ncitizens lawfully admitted to the United States with permission to \nwork. Lawfully admitted noncitizens may also qualify for a SSN for \nnonwork purposes when a federal, state, or local law requires that they \nhave a SSN to obtain a particular welfare benefit or service. SSA staff \ncollect and verify information from such applicants regarding their \nage, identity, citizenship, and immigration status.\n---------------------------------------------------------------------------\n    \\1\\ The Social Security Act of 1935 created the Social Security \nBoard, which was renamed the Social Security Administration in 1946.\n---------------------------------------------------------------------------\n    With the enhancement of computer technologies in recent years, \nprivate sector businesses are increasingly computerizing their records; \nas a result, these enhancements have spawned new businesses activities \ninvolving the aggregation of person information. Information resellers, \nsometimes referred to as information brokers, are businesses that \nspecialize in amassing consumer information including SSNs for \ninformational services. They may provide their services to a variety of \ncustomers, either to specific businesses clients or through the \nInternet to anyone willing to pay a fee. Consumer reporting agencies, \nalso known as credit bureaus, are agencies that collect and sell \ninformation about the creditworthiness of individuals. CRAs collect \ninformation that is considered relevant to a person\'s credit history, \nand obtain SSNs from their customers or businesses that furnish data to \nthem, as well as from private and public sources. Organizations that \nprovide health care services also commonly use consumers\' SSNs. They \nobtain SSNs from individuals themselves and companies that offer health \ncare plans.\n    In recent years, companies have increasingly relied on the use of \ncontractors to perform certain activities and functions related to \ntheir business operations. This trend has often been referred to as \noutsourcing. However, no commonly recognized definition of outsourcing \nexists, and there has been confusion over whether it encompasses only \nactivities a company performed in-house or includes any activity a \ncompany may contract out. According to outsourcing experts, \napproximately 90 percent of businesses contract out some activity \nbecause they find either it is more economical to do so or other \ncompanies are better able to perform these activities. Some of the \nactivities companies outsource will require that contractors be \nprovided personal information about the companies\' customers in order \nto perform those activities, in some cases, this information includes \nSSNs.\n    Due to the pervasive use of SSNs, individuals are routinely asked \nto disclose their SSNs, along with other personal identifying \ninformation, for numerous purposes. In some instances where individuals \nprovide their SSNs to government entities, documents containing the SSN \nare routinely made available to the public for inspection. The \nwidespread disclosure of SSNs in public records has raised concern \nbecause it can put individuals at increased risk of identity theft. In \naddition, given the explosion in the Internet use and the ease with \nwhich personally identifiable information is accessible, individuals \nlooking to steal someone\'s identity are increasingly able to do so. \nAccording to FTC, it receives roughly 15,000 to 20,000 contacts per \nweek on its hotline and Web site, or through the mail from victims and \nconsumers who want to avoid becoming victims.\nBoth Government and Private Sector Entities Collect and Use SSNs for a \n        Variety of Purposes\n    Government entities are generally required by law to collect SSNs \nto determine individuals\' eligibility for services and benefits. SSNs \nare also widely available in public records maintained by state and \nlocal governments and the courts. Certain private sector entities, such \nas information resellers, CRAs, and healthcare organizations obtain \nSSNs from public and private sources, or directly from their customers, \nand use them for various purposes. In addition, banks, securities \nfirms, telecommunication firms, and tax preparers engage in third party \ncontracting and sometimes share SSNs with their contractors for limited \npurposes.\n\nGovernment Entities Are Required by Laws and Regulations to Collect \n        SSNs, and Use Them for Various Purposes\n    As required by a number of federal laws and regulations, agencies \nat all levels of government frequently collect and use SSNs to \nadminister their programs, to link data for verifying applicants\' \neligibility for services and benefits, and to conduct program \nevaluations.\\2\\ For example, the Personal Responsibility and Work \nOpportunity Act of 1996 mandates that, among other things, states have \nlaws in place to require the collection of SSNs on driver\'s license \napplications. Such laws and regulations have contributed to the \nwidespread use of SSNs by government agencies, because the SSN serves \nas a unique identifier.\n---------------------------------------------------------------------------\n    \\2\\ GAO, Social Security: Government and Commercial Use of the \nSocial Security Number Is Widespread, GAO/HEHS-99-28 (Washington, D.C.: \nFebruary 16, 1999) and GAO, Social Security Numbers: Government \nBenefits from SSN Use, but Could Provide Better Safeguards, GA0-02-352 \n(Washington, D.C.: May 31, 2002).\n---------------------------------------------------------------------------\n    Government agencies use SSNs for a variety of purposes. We have \nfound that agencies typically used SSNs to manage their records and to \nfacilitate data sharing to verify an applicant\'s eligibility for \nservices and benefits.\\3\\ For example, agencies use SSNs\n---------------------------------------------------------------------------\n    \\3\\ GA0-02-352.\n\n    <bullet>  for internal administrative purposes, which included \nactivities such as identifying, retrieving, and updating records;\n    <bullet>  to collect debts owed the government and conduct or \nsupport research and evaluations as well as using employees\' SSNs for \nactivities such as payroll, wage reporting, and providing employee \nbenefits;\n    <bullet>  to ensure program integrity, such as matching records \nwith state and local correctional facilities to identify individuals \nfor whom the agency should terminate benefit payments; and\n    <bullet>  for statistics, research, and evaluation; \\4\\\n---------------------------------------------------------------------------\n    \\4\\ The Bureau of the Census is authorized by statute to collect a \nvariety of information and is prohibited from making it available, \nexcept in certain circumstances.\n---------------------------------------------------------------------------\nSSNs Are Widely Available in Public Records Held by States, Local \n        Jurisdictions, and Courts, but Many of These Agencies Are \n        Taking Steps to Limit Display\n    SSNs are publicly available throughout the United States, primarily \nat the state and local levels of government.\\5\\ Based on a survey of \nfederal, state, and local governments, we reported in 2004 that state \nagencies in 41 states and the District of Columbia were displaying SSNs \nin public records; this was also true in 75 percent of U.S. \ncounties.\\6\\ We also found that while the number and type of records in \nwhich SSNs were displayed varied greatly across states and counties, \nSSNs were most often found in court and property records.\n---------------------------------------------------------------------------\n    \\5\\ Not all records held by government or public agents are \n``public\'\' in terms of their availability to any inquiring person. For \nexample, adoption records are generally sealed. Personnel records are \noften not readily available to the public, although newspapers may \npublish the salaries of high, elected officials. There is no common \ndefinition of public records. However, we define public records as \nthose records generally made available to the public for inspection in \ntheir entirety by a federal, state, or local government agency. Such \ndocuments are typically accessed in a public reading room, clerk\'s \noffice, or on the Internet.\n    \\6\\ GAO, Social Security Numbers: Governments Could Do More To \nReduce Display in Public Records and on Identity Cards, GAO-05-59 \n(Washington, D.C.: November 9, 2004).\n---------------------------------------------------------------------------\n    Public records displaying SSNs are stored in multiple formats that \nvary by different levels of government. State government offices tended \nto store such records electronically, while most local government \nrecords were stored on microfiche or microfilm. However, our survey \nfound that public access to such records was often limited to \ninspection of the individual paper copy or request by mail.\\7\\\n---------------------------------------------------------------------------\n    \\7\\ GAO-05-59\n---------------------------------------------------------------------------\n    We found that few state agencies make public records available on \nthe Internet, although some do so. However, few state or local offices \nreported any plans to significantly expand Internet access to public \nrecords that display SSNs. Based on our survey results, only four state \nagencies indicated plans to make such records available on the \nInternet, and one agency planned to remove records displaying SSNs from \nInternet access.\n\nPrivate Sector Entities Obtain SSNs from Public and Private Sources and \n        Use Them for Various Purposes\n    Private sector entities such as information resellers, CRAs, and \nhealth care organizations generally obtain SSNs from various public and \nprivate sources. Large or well known information resellers have told us \nthey obtain SSNs from various public records, such as records of \nbankruptcies, tax liens, civil judgments, criminal histories, deaths, \nreal estate transactions, voter registrations, and professional \nlicenses. They also said that they sometimes obtain batch files of \nelectronic copies of jurisdictional public records where available. \nHowever, some reseller officials said they are more likely to rely on \nSSNs obtained directly from their clients, who would voluntarily \nprovide such information for a specific service or product, than those \nfound in public records.\\8\\\n---------------------------------------------------------------------------\n    \\8\\ GAO, Social Security Numbers: Private Sector Entities Routinely \nObtain and Use SSNs, and Laws Limit the Disclosure of This Information, \nGAO-04-11 (Washington, D.C.: January 22, 2004).\n---------------------------------------------------------------------------\n    Like information resellers, CRAs also obtain SSNs from public and \nprivate sources. CRA officials have told us that they obtained SSNs \nfrom public sources, such as bankruptcy records. We also found that \nthese companies obtained SSNs from other information resellers, \nespecially those that specialized in obtaining information from public \nrecords. However, CRAs are more likely to obtain SSNs from businesses \nthat subscribe to their services, such as banks, insurance companies, \nmortgage companies, debt collection agencies, child support enforcement \nagencies, credit grantors, and employment screening companies. \nTherefore, individuals who provide these businesses with their SSNs for \nreasons such as applying for credit would subsequently have their \ncharges and payment transactions, accompanied by the SSN, reported to \nthe CRAs.\n    Health care organizations, including health care insurance plans \nand providers, are less likely to obtain SSN data from public sources. \nHealth care organizations typically obtained SSNs either from \nindividuals themselves or from companies that offer health care plans. \nFor example, subscribers or policyholders enrolled in a health care \nplan provide their SSN as part of their health care plan application to \ntheir company or employer group. In addition to health care plans, \nhealth care organizations also included health care providers, such as \nhospitals. Such entities often collected SSNs as part of the process of \nobtaining information on insured people. However, health care provider \nofficials told us that, particularly with hospitals, the medical record \nnumber is the primary identifier, rather than the SSN.\n    We found that the primary use of the SSN by information resellers, \nCRAs, and health care organizations alike was to help verify the \nidentity of an individual. Large information resellers said they \ngenerally use the SSN as an identity verification tool. They also use \nit for internal matching purposes of its databases, as a factor in \nidentifying individuals for their product reports, or for conducting \ninvestigations for their clients for resident screening or employment \nscreening. CRAs use SSNs as the primary identifier of individuals that \nenables them to match the information they receive from their business \nclients with information stored in their databases on individuals. \nBecause these companies have various commercial, financial, and \ngovernment agencies furnishing data to them, the SSN is the primary \nfactor that ensures that incoming data is matched correctly with an \nindividual\'s information on file. We found that in some cases CRAs and \ninformation resellers can sometimes be the same entity, a fact that \nblurs the distinction between the two types of businesses but does not \naffect the use of SSNs by these entities. Finally, health care \norganizations also use the SSN to help verify the identity of \nindividuals. These organizations use SSNs, along with other information \nsuch as name, address, and date of birth, as a factor in determining a \nmember\'s identity.\n    Private sector companies also share customers\' SSNs with their \ncontractors. Banks, investment firms, telecommunication companies, and \ntax preparation companies we interviewed routinely obtain SSNs from \ntheir customers for authentication and identification purposes.\\9\\ All \nthese companies contracted out various services, such as data \nprocessing, administrative, and customer service functions. Although \nthese companies may share consumer information, such as SSNs, with \ncontractors that provide services to their customers, company officials \nsaid that they only share such information with their contractors for \nlimited purposes, generally when it is necessary or unavoidable.\n---------------------------------------------------------------------------\n    \\9\\ GAO, Social Security Numbers: Stronger Protections Needed When \nContractors Have Access to SSNs, GAO-06-238 (Washington, D.C.: January \n23, 2006).\n---------------------------------------------------------------------------\n    The companies we contacted provided us with standard contract forms \nthey use in contracting with service providers to safeguard customers\' \npersonal information, such as SSNs, from misuse.\\10\\ In general, the \ntypes of provisions these companies included in their standard contract \nforms included electronic and physical data protections, audit rights, \ndata breach notifications, subcontractor restrictions, and data \nhandling and disposal requirements. We found that most of the companies \nwe interviewed had established some type of due diligence or \ncredentialing process to verify the reliability of potential \ncontractors prior to and during contract negotiations. Furthermore, we \nfound that some industry associations have voluntarily developed \nguidance for their members regarding the sharing of personal \ninformation with third parties.\n---------------------------------------------------------------------------\n    \\10\\ GAO-06-238\n---------------------------------------------------------------------------\nNo Single Law Governs the Use and Disclosure of SSNs Although Various \n        Laws Have Been Enacted That Help Protect SSNs\n    Although no single law comprehensively governs the use and \ndisclosure of SSNs, certain federal laws restrict the use and \ndisclosure of personal information, including SSNs, by government \nagencies or private sector entities. These laws, however, tend to be \ndirected at specific industries or governmental agencies and often do \nnot apply broadly across public and private sectors or across private \nsector industries. For example, the overall use and disclosure of SSNs \nby the federal government is restricted under the Privacy Act, which, \nbroadly speaking, seeks to balance the government\'s need to maintain \ninformation about individuals with the rights of individuals to be \nprotected against unwarranted invasions of their privacy. The Privacy \nAct requires that any federal, state, or local government agency, when \nrequesting an SSN from an individual, tell individuals whether \ndisclosing their SSN is mandatory or voluntary, cite the statutory or \nother authority under which the request is being made, and state what \nuses it will make of the individual\'s SSN.\n    Other federal laws have also placed restrictions on private sector \nentities\' use and disclosure of consumers\' personal information, \nincluding SSNs. These include the Fair Credit Reporting Act (FCRA), the \nFair and Accurate Credit Transaction Act (FACTA), the Gramm-Leach-\nBliley Act (GLBA), the Drivers Privacy Protection Act (DPPA), and the \nHealth Insurance Portability and Accountability Act (HIPAA). As shown \nin table 1, some of these federal laws either restrict certain private \nsector entities from disclosing personally identifiable information to \nspecific purposes or with whom the information is shared. In addition, \ncertain industries, such as the financial services industry, are \nrequired to protect individuals\' personal information to a greater \ndegree than entities in other industries.\n\n Table 1: Aspects of Federal Laws That Affect Private Sector Disclosure\n                         of Personal Information\n------------------------------------------------------------------------\n           Federal Laws                         Restrictions\n------------------------------------------------------------------------\nFair Credit Reporting Act          Limits access to credit data that\n                                    includes SSNs to those who have a\n                                    permissible purpose under the law.\n------------------------------------------------------------------------\nFair and Accurate Credit           Amends FCRA to allow, among others\n Transactions Act                   things, consumers who request a copy\n                                    of their credit report to also\n                                    request that the first 5 digits of\n                                    their SSN (or similar identification\n                                    number) not be included in the file;\n                                    requires consumer reporting agencies\n                                    and any business that use a consumer\n                                    report to adopt procedures for\n                                    proper disposal.\n------------------------------------------------------------------------\nGramm-Leach-Bliley Act             Creates a new definition of personal\n                                    information that includes SSNs and\n                                    limits when financial institutions\n                                    may disclose the information to\n                                    nonaffiliated third parties.\n------------------------------------------------------------------------\nHealth Insurance Portability and   Protects the privacy of health\n Accountability Act                 information that identifies an\n                                    individual and restricts health care\n                                    organizations from disclosing such\n                                    information to others without the\n                                    patient\'s consent.\n------------------------------------------------------------------------\nSource: GAO analysis\n\n    Congress has also introduced a federal statute that criminalizes \nfraud in connection with the unlawful theft and misuse of personal \nidentifiable information. In 1998, Congress enacted the Identity Theft \nand Assumption Deterrence Act (Identity Theft Act). The act made it a \ncriminal offense for a person to ``knowingly transfer, possess, or use \nwithout lawful authority,\'\' another person\'s means of identification \n``with the intent to commit, or to aid or abet, or in connection with, \nany unlawful activity that constitutes a violation of Federal law, or \nthat constitutes a felony under any applicable state or local law.\'\' \nUnder the act, a name or Social Security number is considered a ``means \nof identification\'\' and a number of cases have been prosecuted under \nthis law.\n    Many states have begun to enact laws to restrict the use and \ndisplay of SSNs. (See appendix 1 for a listing of state laws previously \nreported by GAO.) After one state took action, other states followed in \nenacting similar laws. For example, in 2001, California enacted a law \nrestricting the use and display of SSNs, which generally prohibited \ncompanies and persons from engaging in certain activities, such as \nposting or publicly displaying SSNs, or requiring people to transmit an \nSSN over the Internet unless the connection is secure or the number is \nencrypted. In addition, California enacted a law containing \nnotification requirements in the event of a security breach where a \nbusiness or a California state agency is required to notify any \nCalifornia resident whose unencrypted personal information was, or is \nreasonably believed to have been, acquired by an unauthorized person.\n    Subsequently, other states have enacted laws restricting the use \nand display of SSNs. Specifically, in our prior work, we identified 13 \nothers states--Arizona, Arkansas, Connecticut, Georgia, Illinois, \nMaryland, Michigan, Minnesota, Missouri, Oklahoma, Texas, Utah, and \nVirginia--that have each passed laws similar to California\'s. \\11\\ \nWhile some states, such as Arizona, have enacted virtually identical \nSSN use and display restrictions, other states have modified the \nrestrictions in various ways. For example, unlike the California law, \nwhich prohibits the use of the full SSN, the Michigan statute prohibits \nthe use of more than four sequential digits of the SSN. The Michigan \nlaw also contains a prohibition against the use of SSNs on \nidentification and membership cards, permits, and licenses. Missouri\'s \nlaw includes a prohibition against requiring an individual to use his \nor her SSN as an employee number. Oklahoma\'s law is unique in that it \nonly limits the ways in which employers may use their employees\' SSNs, \nand does not apply more generally to other types of transactions and \nactivities.\n---------------------------------------------------------------------------\n    \\11\\  See Arkansas (Ark. Code Ann. \x06 4-86-107 (2005)); Arizona \n(Ariz. Rev. Stat. \x06 44-1373 (2004)); Connecticut (Conn. Gen. Stat. \x06 \n42-470 (2003)); Georgia (Ga. Code Ann. \x06 33-24-57.1 (2003)); Illinois \n(815 Ill. Comp. Stat. 505/2QQ (2004)); Maryland (Md. Code Ann., Com. \nLaw \x06 14-3301 et seq. (2005)); Michigan (Mich. Comp. Laws \x06 445.81 et \nseq. (2004)); Minnesota (Minn. Stat. \x06 325E.59 (2005)); Missouri (Mo. \nRev. Stat. \x06 407.1355 (2003)); Oklahoma (Okla. Stat. tit. 40, \x06 173.1 \n(2004)); Texas (Tex. Bus. & Com. Code Ann. 35.58 (2003)); Utah (Utah \nCode Ann. \x06 31A-21-110 (2004)); and Virginia (Va. Code Ann. \x06 59.1-\n443.2 (2005)).\n---------------------------------------------------------------------------\n    Some states have recently enacted other types of restrictions on \nthe uses of SSNs as well. Arkansas, Colorado, and Wisconsin limit the \nuse of a student\'s SSN as a student identification number.\\12\\ New \nMexico requires businesses that have acquired consumer SSNs to adopt \ninternal policies to limit access to authorized employees.\\13\\ Texas \nrecently enacted a law requiring businesses to properly dispose of \nbusiness records that contain a customer\'s personal identifying \ninformation, which is defined to include SSNs.\\14\\\n---------------------------------------------------------------------------\n    \\12\\ Ark. Code Ann. \x06 6-18-208 (2005); Colo. Rev. Stat. \x06 23-5-127 \n(2003); and Wis. Stat. \x06 36.32 (2001).\n    \\13\\ N.M. Stat. Ann. \x06 57-12B-1 et seq. (2003).\n    \\14\\ Tex. Bus. & Com. Code Ann. \x06 35.48 (2005).\n---------------------------------------------------------------------------\n    Other recent state legislation includes new restrictions on state \nand local government agencies. For example, South Dakota law prohibits \nthe display of SSNs on all driver\'s licenses and nondriver\'s \nidentification cards,\\15\\ while Indiana law generally prohibits a state \nagency from releasing a SSN unless otherwise required by law.\\16\\ In \naddition, as of January 1, 2007, a Nevada law will require governmental \nagencies, except in certain circumstances, to ensure that the SSNs \nrecorded in their books and on their records are maintained in a \nconfidential manner.\\17\\\n---------------------------------------------------------------------------\n    \\15\\ S.D. Codified Laws \x06 32-12-17.13 (2005).\n    \\16\\ Ind. Code \x06 4-1-10-1 et seq. (2005).\n    \\17\\ Nev. Rev. Stat.\x06 239.030 (2005).\n---------------------------------------------------------------------------\n    We also identified four states that have passed legislation \ncontaining notification requirements in the event of a security breach. \nFor example, New York recently enacted a law requiring such \nnotifications.\\18\\ California requires a business or a California state \nagency to notify any California resident whose unencrypted personal \ninformation was, or is reasonably believed to have been, acquired by an \nunauthorized person.\\19\\ In the last year, this law forced several \nlarge companies to notify individuals that their information was \ncompromised because of certain circumstances. Under a Nevada law, \ngovernment agencies and certain persons who do business in the state \nmust notify individuals if their personal information is reasonably \nbelieved to have been compromised.\\20\\ Similarly, Georgia requires \ncertain private sector entities to notify their customers if a security \nbreach occurred that compromised their customers\' personal information, \nsuch as their SSNs.\\21\\\n---------------------------------------------------------------------------\n    \\18\\ N.Y. State Tech. Law \x06 208 (2005).\n    \\19\\ Cal. Civ. Code \x06 1798.29 (2002); 1798.82 (2002).\n    \\20\\ Nev. Rev. Stat. \x06 603A.220 (2005).\n    \\21\\ Ga. Code Ann. \x06 10-1-910 et seq. (2005).\n---------------------------------------------------------------------------\n    In addition, we found that some state offices were beginning to \ntake measures to change the way in which they displayed or shared SSNs \nin public records. For example, we found that many state agencies had \nrestricted access to or redacted--covered or otherwise hidden from \nview--SSNs from public versions of records. Specific restrictions and \nother actions state agencies reported taking included blocking or \nremoving SSNs from electronic versions of records, allowing individuals \nidentified in the record to request removing their SSN from the \npublicly available version, replacing SSNs with alternative \nidentifiers, and restricting access only to individuals identified in \nthe records.\n    Finally, Congress is currently considering consumer privacy \nlegislation, which in some cases includes SSN restrictions. In 2005, \nthere were more than 20 proposed bills pending before the U.S. House \nand Senate.\\22\\ In some cases, the provisions being considered mirrored \nprovisions in enacted state laws. For example, some proposed \nlegislation included prohibitions on the display of SSNs, similar to a \nColorado law, while other proposed legislation address the solicitation \nof SSNs by public and private sector entities. In addition, some \nfederal privacy legislation also proposed consumer safeguards, such as \nsecurity freezes and prohibitions on the sale and purchase of SSNs.\n---------------------------------------------------------------------------\n    \\22\\ GAO, Social Security Numbers: Federal and State Laws Restrict \nUse of SSNs, yet Gaps Remain, GAO-05-1016T (Washington, D.C.: \nSeptember15, 2005)\n---------------------------------------------------------------------------\nMore Could Be Done To Protect SSNs\n    Although laws at both state and federal levels have helped to \nrestrict SSN display and protect individual\'s personal information, \nclearly gaps remain. We have issued a number of reports for this \nSubcommittee that have looked at the collection, use, and protections \nof SSNs by federal agencies and private sector entities. In some cases \nwhere federal action could be taken, we have proposed matters for \ncongressional consideration to explore legislative actions or \nrecommendations to a federal agency to address problems we found. In \nother cases, mainly those that relate to private sector entities, we \nhave proposed a matter for Congressional consideration. OMB has \nimplemented two of our recommendations and Congress is still \nconsidering what actions need to be taken.\nPrior Work Found Gaps in the Protections of SSNs\n    In our review of government uses of SSNs, we reported that certain \nmeasures that could provide more assurances that SSNs obtained by \ngovernment entities are secure are not universally in place at any \nlevel of government.\\23\\ Agencies that deliver services and benefits \nuse SSNs to administer programs and took some steps to safeguard SSNs. \nHowever, when federal, state, and county agencies request SSNs, they \ndid not consistently inform the SSN holders of whether they must \nprovide the SSN to receive benefits or services and how the SSN will be \nused. In addition, although some agencies took action to limit the \ndisplay of SSNs on documents that were not intended to be public but \nmay be viewed by others, these actions sometimes took place in a \npiecemeal manner rather than as a result of a systematic effort.\n---------------------------------------------------------------------------\n    \\23\\ GAO-02-352\n---------------------------------------------------------------------------\n    In our reviews of private sector entities\' collection and use of \nSSNs, we found gaps in how different industries are covered by federal \nlaws protecting individual\'s personal information. In our third party \ncontractors\' review, we reported that federal regulation and oversight \nof SSN sharing varies across four industries we reviewed, revealing \ngaps in federal law and agency oversight for different industries that \nshare SSNs with their contractors.\\24\\ For example, federal law and \noversight of the sharing of personal information in the financial \nservices industry is very extensive: financial services companies must \ncomply with GLBA requirements for safeguarding customer\'s personal \ninformation, and regulators have an examination process in place that \nincludes determining whether banks and securities firms are \nsafeguarding this information. IRS has regulations and guidance in \nplace to restrict the disclosure of SSNs by tax preparers and their \ncontractors, but does not perform periodic reviews of tax preparers\' \ncompliance. FCC does not have regulations covering SSNs and also does \nnot periodically review telecommunications companies to determine \nwhether they are safeguarding such information. Companies in the \nindustries we reviewed relied on accepted industry practices and \nprimarily used the terms of their contracts to safeguard personal \ninformation, including SSNs they shared with outside contractors.\n---------------------------------------------------------------------------\n    \\24\\ GAO-06-238.\n---------------------------------------------------------------------------\n    We also found that there are few restrictions placed on certain \nentities\' abilities such as information resellers to resell SSNs in the \ncourse of their business. Although certain federal laws have some \nrestrictions on reselling nonpublic personal information, these laws \nonly apply to certain types of private sector entities, such as \nfinancial institutions.\n    In our review of SSNs in public records, we found that SSNs are \nwidely exposed to view in a variety of public records and are still \nsubject to exposure on identity cards issued under federal \nauspices.\\25\\ The number and type of records in which SSNs are \ndisplayed varies greatly for both states and counties, and SSNs are \navailable in some federal court records. A number of government \nagencies and oversight bodies are taking steps to eliminate the open \ndisplay of SSNs. For example, some actions state agencies reported \ntaking included blocking or removing SSNs from electronic versions of \nrecords, and replacing SSNs with alternative identifiers. However, such \ninitiatives to protect the SSN may slow its misuse, but the absence of \nuniform and comprehensive policy is likely to leave many individuals \nvulnerable.\n---------------------------------------------------------------------------\n    \\25\\ GAO-05-59.\n---------------------------------------------------------------------------\n    Finally, although they are not displayed in public records en \nmasse, we found that millions of SSNs are still subject to exposure on \nindividual identity cards issued under federal auspices. We found that \nin 2004 an estimated 42 million Medicare cards displayed entire 9-digit \nSSNs, as did approximately 8 million Department of Defense (DOD) \ninsurance cards and 7 million Department of Veterans Affairs (VA) \nbeneficiary cards. Some of these agencies have begun taking action to \nremove SSNs from identification cards. For example, VA is eliminating \nSSNs from 7 million VA identification cards and is replacing cards with \nSSNs or issuing new cards without SSNs from 2004 through 2009, until \nall such cards have been replaced. DOD has begun replacing \napproximately 6 million health insurance cards that display SSNs with \ncards that do not display the bearer\'s SSN, but continues to include \nSSNs on approximately 8 million military identification cards. The \nCenters for Medicare and Medicaid Services, with the largest number of \ncards displaying the entire 9-digit SSN, does not plan to remove the \nSSN from Medicare identification cards.\n\nGAO Has Proposed Matters for Congressional Consideration and \n        Recommendations\n    In order to address the issues we found, GAO has proposed matters \nfor congressional consideration and recommended that a federal agency \ntake action. To date, OMB has implemented two of our three \nrecommendations, but Congress is still considering what other actions \nto take.\n\n    <bullet>  In order to address the problems we found with how \ngovernment entities assure the security of SSNs, we proposed that \nCongress consider convening a representative group of federal, state, \nand local officials to develop a unified approach to safeguarding SSNs \nused in all levels of government. The Privacy Act and other federal \nlaws prescribe actions federal departments and agencies must take to \nassure the security of SSNs and other personal information. However, \nthese requirements may not be uniformly observed. We presented a matter \nfor congressional consideration to facilitate intergovernmental \ncollaboration in strengthening safeguards at the state and local \nlevels. We also made two recommendations to the Office of Management \nand Budget that it direct federal agencies to review their practices \nfor securing SSNs and providing required information, and advise all \nfederal, state, and local governments of the applicability of the \nPrivacy Act to their uses of SSNs. OMB has implemented both our \nrecommendations.\n    <bullet>  In our report on third party contactors\' uses of SSNs, we \nrecommended that Congress consider possible options for addressing the \ngaps in existing federal requirements for safeguarding SSNs shared with \ncontractors. The current gaps do not provide incentives for companies \nto commit to protecting personal information. Each industry is subject \nto different federal oversight and is often left to decide what \nestablished practices for safeguarding SSNs and other consumer \ninformation it wishes to follow. We suggested that one approach \nCongress could take would be to require industry-specific protections \nfor the sharing of SSNs with contractors where such measures are not \nalready in place. For example, Congress could consider whether the \nTelecommunications Act of 1996 should be amended to address how that \nindustry shares SSNs with contractors. Alternatively, we suggested that \nCongress could take a broader approach. For example, in considering \nproposed legislation that would generally restrict the use and display \nof SSNs, Congress could also include a provision that would explicitly \napply this restriction to third party contractors. We stated that with \neither approach, Congress would want to establish a mechanism \noverseeing compliance by contractors and enforcement.\n    <bullet>  In our report on the display of SSNs on identification \ncards and in public records, we recommended that OMB identify all those \nfederal activities that require or engage in the display of 9-digit \nSSNs on health insurance, identification, or any other cards issued to \nfederal government personnel or program beneficiaries, and devise a \ngovernmentwide policy to ensure a consistent approach to this type of \ndisplay. Although SSA has authority to issue policies and procedures \nover the Social Security cards that it issues, it does not have \nauthority over how other federal agencies use and display SSNs. Rather, \nit is up to individual government agencies to have their own policies \nfor the cards issued under their authority. The lack of a broad, \nuniform policy allows for inconsistent, but persistent exposure of the \nSSN. OMB has not yet taken action on our recommendation but said at the \ntime we issued our report they would consider it. With regard to SSN \nexposure in public records, we again noted that it would be \nconstructive for a representative group of federal, state, and local \nofficials to develop a unified approach to safeguarding SSNs used in \nall levels of government, particularly those displayed in public \nrecords.\n    <bullet>  Finally, with regard to private sector entities, such as \ninformation resellers reselling personal information, including SSNs, \nwe noted that there are few restrictions placed on these entities \nability to obtain, use, and resell SSNs for their businesses. The \nfederal laws that have some restrictions can be interpreted broadly. \nThe broad interpretation combined with the uncertainty about the \napplication of the exceptions suggest that reselling personal \ninformation--including SSNs--is likely to continue.\nConclusions\n    The use of SSNs by both public and private sector entities is \nlikely to continue given that it is used as the key identifier by most \nof these entities and there is currently no other widely accepted \nalternative. Given the significance of the SSN in committing fraud or \nstealing a person\'s identity, it is imperative that steps be taken to \nprotect it. Without proper safeguards in place, SSNs will remain \nvulnerable to misuse, thus adding to the growing number of identity \ntheft victims.\n    SSNs are still widely used and publicly available, although \nbecoming less so. State legislatures have begun to place restrictions \non SSNs by enacting laws that restrict the use and display of SSNs and \nprohibit the theft of individuals\' personal information. Yet, more \ncould be done to protect SSNs. As Congress continues to propose and \nconsider legislation to protect individuals\' personal information, gaps \nin protections that have already been identified could help focus the \ndebate on the areas that could be addressed immediately based on our \nwork in order to prevent SSNs and other personal information from being \nmisused.\n    At this Subcommittee\'s request, we are continuing work on SSNs and \nthe ease with which they can be purchased from Internet information \nresellers. We look forward to supporting continued congressional \nconsideration of these important policy issues. That concludes my \ntestimony, and I would be pleased to respond to any questions the \nsubcommittee has.\n\n     Appendix I: Selected State SSN Laws Previously Reported by GAO\n------------------------------------------------------------------------\n             Type of Law                        Enacting States\n------------------------------------------------------------------------\nImposes Limits on State and Local      Connecticut\n Governments, including Restrictions   Delaware\n on Public Disclosure                  Florida\n                                       Georgia\n                                       Hawaii\n                                       Indiana\n                                       Minnesota\n                                       Nebraska\n                                       Nevada\n                                       New Jersey\n                                       North Dakota\n                                       Oregon\n                                       South Carolina\n                                       Tennessee\n                                       Texas\n                                       Virginia\n                                       West Virginia\n------------------------------------------------------------------------\nLimits Use and Display of SSNs         Arizona\n                                       Arkansas\n                                       California\n                                       Connecticut\n                                       Georgia\n                                       Illinois\n                                       Maryland\n                                       Michigan\n                                       Minnesota\n                                       Missouri\n                                       Oklahoma\n                                       Texas\n                                       Utah\n                                       Virginia\n------------------------------------------------------------------------\nLimits Use of SSNs on Drivers\'         Indiana\n Licenses                              North Dakota\n                                       South Dakota\n                                       West Virginia\n------------------------------------------------------------------------\nRequires Notification of Security      California\n Breaches                              Georgia\n                                       Nevada\n                                       New York\n------------------------------------------------------------------------\nProhibits Certain Activities Related   Arizona\n to Identity Theft                     Idaho\n                                       New York\n------------------------------------------------------------------------\nLimits or Prohibits Use of SSN as      Arkansas\n Student ID Number                     Colorado\n                                       Wisconsin\n------------------------------------------------------------------------\nAuthorizes Redaction of SSNs in        California\n Certain Public Records                New Jersey\n------------------------------------------------------------------------\nLimits Certain Activities of           North Dakota\n Financial Institutions                Vermont\n------------------------------------------------------------------------\nProhibits Businesses From Requiring    New Mexico\n SSNs as a Condition of Doing          Rhode Island\n Business\n------------------------------------------------------------------------\nRequires Development of Employee       New Mexico\n Access Policies\n------------------------------------------------------------------------\nRequires Business to Properly Dispose  Texas\n of Business Records Containing\n Customers\' Personal Information\n------------------------------------------------------------------------\nProvides Identity Theft Victim         Washington\n Assistance\n------------------------------------------------------------------------\nRequires that SSNs be Truncated for    Louisiana\n Certain Public Records\n------------------------------------------------------------------------\nRequires Third Party Contracting       California\n Protections\n------------------------------------------------------------------------\nSource: GAO Analysis\n\nRelated GAO Products\n    Social Security Numbers: Stronger Protections Needed When \nContractors Have Access to SSNs. GAO-06-238. Washington, D.C.: January \n23, 2006.\n    Social Security Numbers: Federal and State Laws Restrict Use of \nSSNs, yet Gaps Remain. GAO-05-1016T. Washington, D.C.: September 15, \n2005.\n    Social Security Numbers: Governments Could Do More to Reduce \nDisplay in Public Records and on Identity Cards. GAO-05-59. Washington, \nD.C.: November 9, 2004.\n    Social Security Numbers: Use Is Widespread and Protections Vary in \nPrivate and Public Sectors. GAO-04-1099T. Washington, D.C.: September \n28, 2004.\n    Social Security Numbers: Use Is Widespread and Protections Vary. \nGAO-04-768T. Washington, D.C.: June 15, 2004.\n    Social Security Numbers: Private Sector Entities Routinely Obtain \nand Use SSNs, and Laws Limit the Disclosure of This Information. GAO-\n04-11. Washington, D.C.: January 22, 2004.\n    Social Security Numbers: Ensuring the Integrity of the SSN. GAO-03-\n941T. Washington, D.C.: July 10, 2003.\n    Social Security Numbers: Government Benefits from SSN Use but Could \nProvide Better Safeguards. GAO-02-352. Washington, D.C.:May 31, 2002.\n    Social Security: Government and Commercial Use of the Social \nSecurity Number is Widespread. GAO/HEHS-99-28. Washington, D.C.: \nFebruary 16, 1999.\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Thank you, Ms. Fagnoni. Mr. Winston?\n\n  STATEMENT OF JOEL WINSTON, ASSOCIATE DIRECTOR, DIVISION OF \nPRIVACY AND IDENTITY PROTECTION, BUREAU OF CONSUMER PROTECTION, \n                    FEDERAL TRADE COMMISSION\n\n    Mr. WINSTON. Mr. Chairman, Mr. Levin, Members of the \nSubcommittee, I am Joel Winston, Associate Director of the \nDivision of Privacy and Identity Protection at the Federal \nTrade Commission (FTC). I appreciate the opportunity to testify \ntoday about the important issue of SSNs and their relation to \nidentity theft. Although the views expressed in the written \ntestimony represent those of the Commission, my oral \npresentation and responses to your questions are my own and do \nnot necessarily represent the opinions of the Commission or any \nindividual Commissioner.\n    Americans today are very concerned about protecting their \nidentities, and with good reason. Identity theft is a \npernicious and persistent problem. When a thief steals your \nidentity, the economic and emotional impact can be severe. \nAmerican businesses pay a heavy price, as well, as much as $50 \nbillion every year. Every time consumers hear about the latest \ndata breach that threatens to expose their personal \ninformation, they lose a little more confidence in our \ncommercial system.\n    Access to SSNs contributes to the worst form of identity \ntheft, having new accounts opened in your name. The SSN has \nbecome an all-purpose identifier because of its convenience, \nits uniqueness to each individual, and its permanence over \ntime. Many businesses also use the SSN to authenticate that the \nperson presenting it is who he says he is. It is this dual use \nthat makes the SSN so valuable to identity thieves.\n    At the same time, the SSN serves many important functions \nin our financial system. For example, our credit reporting \nsystem hinges on the availability of SSNs to match consumers \nwith their financial information. SSNs also are used to locate \nlost beneficiaries, collect child support, and detect fraud, \namong many other things.\n    This presents a challenge, how to find the right balance \nbetween permitting beneficial use and disclosure of SSNs while \nkeeping them out of the hands of criminals. The solution must \ncombine a number of approaches. To begin with, public and \nprivate entities should use less sensitive identifiers whenever \npossible and they must do a better job of securing consumer \ndata. This is a fundamental legal responsibility. Under the \nFederal Trade Commission Act, the Commission can act against \nfirms that misrepresent their security procedures or fail to \ntake reasonable steps to secure sensitive information. The FTC \nSafeguards Rule requires financial institutions to implement \nreasonable safeguards to protect consumer information. The FTC \nDisposal Rule requires businesses that hold certain consumer \ninformation to dispose of it in a safe manner.\n    The Commission has acted aggressively to enforce these \nlegal requirements. Our two most recent cases involved massive \ndata breaches that led to numerous instances of identity fraud. \nIn both cases, the Commission alleged that the company failed \nto have reasonable procedures to safeguard consumer \ninformation, including in one of the cases SSNs.\n    In addition to law enforcement, education and outreach are \ncritical weapons in this fight. The Commission has targeted its \nefforts at the three groups best situated to combat identity \ntheft, consumers, industry, and law enforcement. We receive \nbetween 15,000 and 20,000 contacts per week from individuals \nseeking advice on avoiding identity theft or coping with the \nconsequences. We provide information and assistance, including \ntools to simplify the recovery process.\n    We are working to implement the provisions of the Fair and \nAccurate Credit Transactions Act of 2003 Act (P.L. 108-159) \n(FACT Act), many of which address identity theft. The free \nannual credit report program, for example, has allowed millions \nof consumers to obtain and check their credit reports, where \nthe first signs of identity fraud often appear.\n    The Commission also works with the business community to \npromote a culture of security. Our outreach efforts encourage \nand help businesses to maintain only the information that they \nneed and to protect the information that they maintain.\n    Finally, the Commission assists criminal law enforcement \nthrough our operation of the ID Theft Data Clearinghouse, a \nnational database with over a million identity theft \ncomplaints. Law enforcers, ranging from the FBI to local \nsheriffs, use the clearinghouse to aid in their investigation.\n    In closing, I want to emphasize that identity theft is a \nmulti-faceted problem for which there is no simple solution. \nThe challenge of determining how best to keep SSNs out of the \nhands of wrongdoers illustrates how difficult this problem is. \nStill, there is much that we can do to discourage unnecessary \nuse of SSNs, enhance data protection, educate consumers, and \nassist criminal prosecutors. The Commission will continue to \nplay a central role in the fight against identity theft and we \nlook forward to working with the Congress in this endeavor.\n    Thank you again for the opportunity to testify today and I \nwould be happy to answer any questions.\n    [The prepared statement of Mr. Winston follows:]\n\nStatement of Joel Winston, Associate Director, Division of Privacy and \n   Identity Protection, Bureau of Consumer Protection, Federal Trade \n                               Commission\n\nI. INTRODUCTION\n    Mr. Chairman, Mr. Levin, and members of the Subcommittee, I am Joel \nWinston, Associate Director of the Division of Privacy and Identity \nProtection at the Federal Trade Commission (``FTC\'\' or \n``Commission\'\').\\1\\ I appreciate the opportunity to present the \nCommission\'s views on identity theft and Social Security numbers \n(``SSNs\'\').\n---------------------------------------------------------------------------\n    \\1\\ The views expressed in this statement represent the views of \nthe Commission. My oral presentation and responses to questions are my \nown and do not necessarily represent the views of the Commission or any \nCommissioner.\n---------------------------------------------------------------------------\n    The Commission has a broad mandate to protect consumers generally \nand to combat identity theft specifically. Controlling identity theft \nis an issue of critical concern to all consumers--and to the \nCommission. The FTC serves a key role as the central repository for \nidentity theft complaints, facilitates criminal law enforcement in \ndetecting and prosecuting identity thieves, and provides extensive \nvictim assistance and consumer education. In recognition of the need to \nprotect sensitive consumer information and prevent identity theft, the \nFTC recently created a new Division of Privacy and Identity Protection. \nThis division--which consists of staff with expertise in privacy, data \nsecurity, and identity theft--addresses cutting-edge consumer privacy \nmatters through aggressive enforcement, as well as rulemaking, policy \ndevelopment, and outreach to consumers and businesses.\n     This testimony describes the ways in which SSNs are collected and \nused, their relationship to identity theft, current laws that restrict \nthe use or transfer of consumers\' personal information, and the \nCommission\'s efforts to help consumers avoid identity theft or \nremediate its consequences.\n\nII. THE IDENTITY THEFT PROBLEM\n    Identity theft is a pernicious crime that harms both consumers and \nbusinesses. Recent surveys estimate that nearly 10 million consumers \nare victimized by some form of identity theft each year.\\2\\ The costs \nof this crime are staggering. The Commission\'s 2003 survey estimated \nthat identity theft cost businesses approximately $50 billion, and cost \nconsumers an additional $5 billion in out-of-pocket expenses, over the \ntwelve-month period prior to the survey.\\3\\ The 2003 survey looked at \ntwo major categories of identity theft: (1) misuse of existing \naccounts; and (2) the creation of new accounts in the victim\'s name. \nThe 2003 survey found that the costs imposed by new account fraud were \nsubstantially higher than the misuse of existing accounts.\\4\\\n---------------------------------------------------------------------------\n    \\2\\ See Federal Trade Commission--Identity Theft Survey Report \n(2003), http://www.ftc.gov/os/2003/09/synovatereport.pdf and Rubina \nJohannes, 2006 Identity Fraud Survey Report (2006), http://\nwww.javelinstrategy.com/research. A free summary of the 2006 Identity \nFraud Survey Report is available at http://www.bbb.org/alerts/\narticle.asp?ID=651.\n    \\3\\ Federal Trade Commission--Identity Theft Survey Report at 6 \n(2003), http://www.ftc.gov/os/2003/09/synovatereport.pdf.\n    \\4\\ Id.\n---------------------------------------------------------------------------\nIII. USES AND SOURCES OF SOCIAL SECURITY NUMBERS\n     SSNs today play a vital role in our economy. With 300 million \nAmerican consumers, many of whom share the same name,\\5\\ the unique 9-\ndigit SSN is a key identification tool for businesses, government, and \nothers.\\6\\ For example, consumer reporting agencies use SSNs to ensure \nthat the data furnished to them is placed in the correct file and that \nthey are providing a credit report on the correct consumer.\\7\\ \nBusinesses and other entities use these reports to evaluate the risk of \nproviding to individuals services, such as credit, insurance, home \nrentals, or employment. Timely access to consumer credit, as well as \nthe overall accuracy of credit reporting files, could be compromised if \nSSNs could not be used to match consumers to their financial \ninformation. Additionally, SSNs are used in locator databases to find \nlost beneficiaries, potential witnesses, and law violators, and to \ncollect child support and other judgments. SSN databases also are used \nto fight identity fraud--for example, to confirm that an SSN provided \nby a loan applicant does not, in fact, belong to someone who is \ndeceased.\\8\\ Without the ability to use SSNs as a personal identifier \nand fraud prevention tool, the granting of credit and the provision of \nother financial services would become riskier and more expensive and \ninconvenient for consumers.\n---------------------------------------------------------------------------\n    \\5\\ According to the Consumer Data Industry Association, 14 million \nAmericans have one of ten last names, and 58 million men have one of \nten first names.\n    \\6\\ See General Accounting Office, Private Sector Entities \nRoutinely Obtain and Use SSNs, and Laws Limit the Disclosure of This \nInformation (GAO 04-01) (2004).\n    \\7\\ See Federal Trade Commission--Report to Congress Under Sections \n318 and 319 of the Fair and Accurate Credit Transactions Act of 2003 at \n38-40 (2004),http://www.ftc.gov/reports/facta/041209factarpt.pdf.\n    \\8\\ The federal government also uses the SSN as an identifier, for \nexample, as both an individual\'s Medicare and taxpayer identification \nnumber. It also is used to administer the federal jury system, federal \nwelfare and workmen\'s compensation programs, and military draft \nregistration. See Social Security Administration, Report to Congress on \nOptions for Enhancing the Social Security Card (Sept. 1997), \nwww.ssa.gov/history/reports/ssnreportc2.html.\n---------------------------------------------------------------------------\n    SSNs are available from both public and private sources. Public \nrecords in city and county government offices across the country, \nincluding birth and death records, property records, tax lien records, \nvoter registrations, licensing records, and court records, often \ncontain consumers\' SSNs.\\9\\ Increasingly, these records are being \nplaced online where they can be accessed easily and anonymously.\\10\\ \nThere also are a number of private sources of SSNs, including consumer \nreporting agencies that include name, address, and SSN as part of the \n``credit header\'\' information on consumer reports. Data brokers also \ncollect personal information, including SSNs, from a variety of sources \nand compile and resell that data to third parties.\\11\\\n---------------------------------------------------------------------------\n    \\9\\ Local and state governments are reducing their reliance on SSNs \nfor many administrative purposes in response to identity theft \nconcerns. For example, only a few states still use SSNs as drivers \nlicense numbers. See David A. Lieb, Millions of Motorists Have Social \nSecurity Numbers on Licenses, The Boston Globe, Feb. 6, 2006, http://\nwww.boston.com/news/local/massachusetts/articles/2006/02/06/\nmillions_of_motorists_have_social_security_numbers_on_licenses/. In \nsome cases, however, governments still use SSNs as identifiers when it \nis not essential to do so. See Mark Segraves, Registering to Vote May \nLead to Identity Theft, WTOP Radio, Mar. 22, 2006, http://www.wtop.com/\n?nid=428&sid=733727.\n    \\10\\ Improved access to public records has important public policy \nbenefits, but at the same time raises privacy concerns. Some public \nrecords offices redact sensitive information such as SSNs, but doing so \ncan be very costly. The Commission has recognized the sensitive nature \nof SSNs, even when they are contained in publicly available records. \nFor example, in response to a comment on the DSW order, the Commission \nstated that ``[C]ertain publicly available records, such as court \nrecords, contain Social Security numbers and other highly sensitive \ninformation that can be used to perpetrate identity theft.\'\' The \nCommission response letter is available at http://www.ftc.gov/os/\ncaselist/0523096/0523096DSW LettertoCommenter BankofAmerica.pdf.\n    \\11\\ Some data brokers have announced that they are voluntarily \nrestricting the sale of SSNs and other sensitive information to those \nwith a demonstrable and legitimate need. See Social Security Numbers \nAre for Sale Online, Newsmax.com, Apr. 5, 2005, http://www.newsmax.com/\narchives/articles/2005/4/4/155759.shtml.\n---------------------------------------------------------------------------\n    The misuse of SSNs, however, can facilitate identity theft. For \nexample, new account fraud--the most serious form of identity theft--is \noften possible only if the thief obtains the victim\'s SSN. The \nchallenge is to find the proper balance between the need to keep SSNs \nout of the hands of identity thieves, while giving businesses and \ngovernment entities sufficient means to attribute information to the \ncorrect person. Restrictions on disclosure of SSNs also could have a \nbroad impact on such important purposes as public health, criminal law \nenforcement, and anti-fraud and anti-terrorism efforts. Moreover, as \nreferenced above, regulation or restriction of the availability of SSNs \nin public records poses substantial policy and practical concerns.\nIV. CURRENT LAWS RESTRICTING THE USE OF DISCLOSURE OF SOCIAL SECURITY \n        NUMBERS\n    There are a variety of specific statutes and regulations that \nrestrict disclosure of certain consumer information, including SSNs, in \ncertain contexts. In addition, under some circumstances, entities are \nrequired to have procedures in place to ensure the security and \nintegrity of sensitive consumer information such as SSNs. Three \nstatutes that protect SSNs from improper access fall within the \nCommission\'s jurisdiction: Title V of the Gramm-Leach-Bliley Act \n(``GLBA\'\');\\12\\ Section 5 of the Federal Trade Commission Act (``FTC \nAct\'\');\\13\\ and the Fair and Accurate Credit Transactions Act of 2003 \n(``FACT Act\'\'),\\14\\ amending the Fair Credit Reporting Act \n(``FCRA\'\').\\15\\\n---------------------------------------------------------------------------\n    \\12\\ 15 U.S.C. \x06\x06 6801-09.\n    \\13\\ 15 U.S.C. \x06 45(a).\n    \\14\\ Pub. L. No. 108-159, 117 Stat. 1952.\n    \\15\\ 15 U.S.C. \x06\x06 1681-1681x, as amended.\n---------------------------------------------------------------------------\nA. The Gramm-Leach-Bliley Act\n    The Gramm-Leach-Bliley Act (``GLBA\'\') imposes privacy and security \nobligations on ``financial institutions.\'\'\\16\\ Financial institutions \nare defined broadly as those entities engaged in ``financial \nactivities\'\' such as banking, lending, insurance, loan brokering, and \ncredit reporting.\\17\\\n---------------------------------------------------------------------------\n    \\16\\ 15 U.S.C. \x06 6809(3)(A).\n    \\17\\ 12 C.F.R. \x06\x06 225.28, 225.86.\n---------------------------------------------------------------------------\n1. Privacy of Consumer Financial Information\n    In general, financial institutions are prohibited by Title V of the \nGLBA\\18\\ from disclosing nonpublic personal information, including \nSSNs, to non-affiliated third parties without first providing consumers \nwith notice and the opportunity to opt out of the disclosure.\\19\\ \nHowever, the GLBA includes a number of statutory exceptions under which \ndisclosure is permitted without having to provide notice and an opt-\nout. These exceptions include consumer reporting (pursuant to the \nFCRA), fraud prevention, law enforcement and regulatory or self-\nregulatory purposes, compliance with judicial process, and public \nsafety investigations.\\20\\ Entities that receive information under an \nexception to the GLBA are subject to the reuse and redisclosure \nrestrictions of the GLBA Privacy Rule, even if those entities are not \nthemselves financial institutions.\\21\\ In particular, the recipients \nmay only use and disclose the information ``in the ordinary course of \nbusiness to carry out the activity covered by the exception under which \n. . . the information [was received].\'\'\\22\\\n---------------------------------------------------------------------------\n    \\18\\ Privacy of Consumer Financial Information, 16 C.F.R. Part 313 \n(``GLBA Privacy Rule\'\').\n    \\19\\ The GLBA defines ``nonpublic personal information\'\' as any \ninformation that a financial institution collects about an individual \nin connection with providing a financial product or service to an \nindividual, unless that information is otherwise publicly available. \nThis includes basic identifying information about individuals, such as \nname, SSN, address, telephone number, mother\'s maiden name, and prior \naddresses.  See, e.g., 65 Fed. Reg. 33,646, 33,680 (May 24, 2000) (the \nFTC\'s Privacy Rule).\n    \\20\\ 15 U.S.C. \x06 6802(e).\n    \\21\\ 16 C.F.R. \x06 313.11(a).\n    \\22\\ Id.\n---------------------------------------------------------------------------\n    Entities can obtain SSNs from consumer reporting agencies, \ngenerally from the credit header data on the credit report. However, \nbecause credit header data is typically derived from information \noriginally provided by financial institutions, entities that receive \nthis information generally are limited by the GLBA\'s reuse and \nredisclosure provision.\n2. Required Safeguards for Customer Information\n    The GLBA also requires financial institutions to implement \nappropriate physical, technical, and procedural safeguards to protect \nthe security and integrity of the information they receive from \ncustomers, whether directly or from other financial institutions.\\23\\ \nThe FTC\'s Safeguards Rule, which implements these requirements for \nentities under FTC jurisdiction,\\24\\ requires financial institutions to \ndevelop a written information security plan that describes their \nprocedures to protect customer information. Given the wide variety of \nentities covered, the Safeguards Rule requires a plan that accounts for \neach entity\'s particular circumstances--its size and complexity, the \nnature and scope of its activities, and the sensitivity of the customer \ninformation it handles. It also requires covered entities to take \ncertain procedural steps (for example, designating appropriate \npersonnel to oversee the security plan, conducting a risk assessment, \nand overseeing service providers) in implementing their plans.\\25\\\n---------------------------------------------------------------------------\n    \\23\\ 15 U.S.C. \x06 6801(b); Standards for Safeguarding Customer \nInformation, 16 C.F.R. Part 314 (``Safeguards Rule\'\').\n    \\24\\ The Federal Deposit Insurance Corporation, the National Credit \nUnion Administration (``NCUA\'\'), the Securities and Exchange \nCommission, the Office of the Comptroller of the Currency, the Board of \nGovernors of the Federal Reserve System, the Office of Thrift \nSupervision, and state insurance authorities have promulgated \ncomparable information safeguards rules, as required by Section 501(b) \nof the GLBA. 15 U.S.C. \x06 6801(b); see, e.g., Interagency Guidelines \nEstablishing Standards for Safeguarding Customer Information and \nRescission of Year 2000 Standards for Safety and Soundness, 66 Fed. \nReg. 8,616-41 (Feb. 1, 2001). The FTC has jurisdiction over entities \nnot subject to the jurisdiction of these agencies.\n    \\25\\ The Commission previously has recommended that Congress \nconsider whether companies that hold sensitive consumer data, for \nwhatever purpose, should be required to take reasonable measures to \nensure its safety. Such a requirement could extend the FTC\'s existing \nGLBA Safeguards Rule to companies that are not financial institutions. \nSee Statement of Federal Trade Commission Before the Committee on \nCommerce, Science, and Transportation, U.S. Senate, on Data Breaches \nand Identity Theft (June 16, 2005) at 7, http://www.ftc.gov/os/2005/06/\n050616databreaches.pdf.\n---------------------------------------------------------------------------\nB. Section 5 of the FTC Act\n    Section 5 of the FTC Act prohibits ``unfair or deceptive acts or \npractices in or affecting commerce.\'\'\\26\\ Under the FTC Act, the \nCommission has broad jurisdiction over a wide variety of entities and \nindividuals operating in commerce. Prohibited practices include making \ndeceptive claims about one\'s privacy procedures, including claims about \nthe security provided for consumer information.\\27\\\n---------------------------------------------------------------------------\n    \\26\\ 15 U.S.C. \x06 45(a).\n    \\27\\ Deceptive practices are defined as material representations or \nomissions that are likely to mislead consumers acting reasonably under \nthe circumstances. Cliffdale Associates, Inc., 103 F.T.C. 110 (1984).\n---------------------------------------------------------------------------\n    In addition to deception, the FTC Act prohibits unfair practices. \nPractices are unfair if they cause or are likely to cause consumers \nsubstantial injury that is neither reasonably avoidable by consumers \nnor offset by countervailing benefits to consumers or competition.\\28\\ \nThe Commission has used this authority to challenge a variety of \ninjurious practices, including companies\' failure to provide reasonable \nand appropriate security for sensitive customer data.\\29\\ The \nCommission can obtain injunctive relief for violations of Section 5, as \nwell as consumer redress or disgorgement in appropriate cases.\n---------------------------------------------------------------------------\n    \\28\\ 15 U.S.C. \x06 45(n).\n    \\29\\ Other practices include, for example, allegations of \nunauthorized charges in connection with ``phishing,\'\' high-tech scams \nthat use spam or pop-up messages to deceive consumers into disclosing \ncredit card numbers, bank account information, SSNs, passwords, or \nother sensitive information.  See FTC v. Hill, No. H 03-5537 (filed \nS.D. Tex. Dec. 3, 2003), http://www.ftc.gov/opa/2004/03/\nphishinghilljoint.htm; FTC v. C.J., No. 03-CV-5275-GHK (RZX) (filed \nC.D. Cal. July 24, 2003), http://www.ftc.gov/os/2003/07/\nphishingcomp.pdf.\n---------------------------------------------------------------------------\nC. The Fair and Accurate Credit Transactions Act of 2003\n    The FACT Act amended the FCRA to include a number of provisions \ndesigned to increase the protection of sensitive consumer information, \nincluding SSNs. One such provision required the banking regulatory \nagencies, the NCUA, and the Commission to promulgate a coordinated rule \ndesigned to prevent unauthorized access to consumer report information \nby requiring all users of such information to have reasonable \nprocedures to dispose of it properly and safely.\\30\\ This Disposal \nRule, which took effect on June 1, 2005, should help minimize the risk \nof improper disclosure of SSNs.\n---------------------------------------------------------------------------\n    \\30\\ 16 C.F.R. Part 382 (``Disposal of Consumer Report Information \nand Record Rule\'\').\n---------------------------------------------------------------------------\n    In addition, the FACT Act requires consumer reporting agencies to \ntruncate the SSN on consumer reports at the consumer\'s request.\\31\\ \nEliminating the unnecessary display of this information could lessen \nthe risk of it getting into the wrong hands.\n---------------------------------------------------------------------------\n    \\31\\ 15 U.S.C. \x06 1681g(a)(1)(A). The FTC advises consumers of this \nright through its consumer outreach initiatives. See e.g., the FTC\'s \nidentity theft prevention and victim recovery guide, Take Charge: \nFighting Back Against Identity Theft at 5 (2005), available at http://\nwww.ftc.gov/bcp/conline/pubs/credit/idtheft.pdf.\n---------------------------------------------------------------------------\nD. Other Laws\n    Other federal laws not enforced by the Commission regulate certain \nother specific classes of information, including SSNs. For example, the \nDriver\'s Privacy Protection Act (``DPPA\'\') \\32\\ prohibits state motor \nvehicle departments from disclosing personal information in motor \nvehicle records, subject to fourteen ``permissible uses,\'\' including \nlaw enforcement, motor vehicle safety, and insurance. The Health \nInformation Portability and Accountability Act (``HIPAA\'\') and its \nimplementing privacy rule prohibit the disclosure to third parties of a \nconsumer\'s medical information without prior consent, subject to a \nnumber of exceptions (such as, for the disclosure of patient records \nbetween entities for purposes of routine treatment, insurance, or \npayment).\\33\\ Like the GLBA Safeguards Rule, the HIPAA Privacy Rule \nalso requires entities under its jurisdiction to have in place \n``appropriate administrative, technical, and physical safeguards to \nprotect the privacy of protected health information.\'\' \\34\\\n---------------------------------------------------------------------------\n    \\32\\ 18 U.S.C. \x06\x06 2721-25.\n    \\33\\ 45 C.F.R. Part 164 (``HIPAA Privacy Rule\'\').\n    \\34\\ 45 C.F.R. \x06 164.530(c).\n---------------------------------------------------------------------------\nE. FTC Enforcement Actions\n    Over the past year or so, reports have proliferated about \ninformation compromises at U.S. businesses, universities, government \nagencies, and other organizations that collect and store sensitive \nconsumer information, including SSNs. Some of these incidents \nreportedly have led to identity theft, confirming that security \nbreaches can cause real and tangible harm to consumers, businesses, and \nother institutions.\n    Since 2001, the Commission has brought twelve cases challenging \nbusinesses that have failed to take reasonable steps to protect \nsensitive consumer information in their files.\\35\\ Two of the \nCommission\'s most recent law enforcement actions arose from high-\nprofile data breaches that occurred last year. In the first case, the \nCommission alleged that a major data broker, ChoicePoint, Inc., failed \nto use reasonable procedures to screen prospective subscribers and \nmonitor their access to sensitive consumer data, in violation of the \nFCRA \\36\\ and the FTC Act.\\37\\ The Commission\'s complaint alleged that \nChoicePoint\'s failures allowed identity thieves to obtain access to the \npersonal information of over 160,000 consumers, including nearly 10,000 \nconsumer reports. In settling the case, ChoicePoint agreed to pay $10 \nmillion in civil penalties for the FCRA violations--the highest civil \npenalty ever levied in a consumer protection case--and $5 million in \nconsumer redress for identity theft victims. The Order also requires \nChoicePoint to implement a number of strong data security measures, \nincluding bi-annual audits to ensure that these security measures are \nin place.\n---------------------------------------------------------------------------\n    \\35\\ Documents related to these enforcement actions generally are \navailable at http://www.ftc.gov/privacy/index.html.\n    \\36\\ 15 U.S.C. \x06\x06 1681-1681x, as amended. The FCRA specifies that \nconsumer reporting agencies may only provide consumer reports for \ncertain ``permissible purposes.\'\' ChoicePoint allegedly approved as \ncustomers individuals whose applications had several indicia of fraud, \nincluding false credentials, the use of commercial mail drops as \nbusiness addresses, and multiple applications faxed from the same \npublic commercial location. The FTC\'s complaint alleged that \nChoicePoint did not have a permissible purpose in providing consumer \nreports to such individuals and failed to have reasonable procedures to \nverify prospective subscribers.\n    \\37\\ United States v. ChoicePoint, Inc., No. 106-CV-0198 (N.D. Ga. \nFeb. 15, 2006).\n---------------------------------------------------------------------------\n    In the second action, the Commission reached a settlement with \nCardSystems Solutions, Inc., the card processor allegedly responsible \nfor last year\'s breach of credit and debit card information for Visa \nand MasterCard, which exposed tens of millions of consumers\' credit and \ndebit numbers.\\38\\ This case addresses the largest known compromise of \nsensitive financial data to date. As in the ChoicePoint case, the FTC \nalleged that CardSystems engaged in a number of practices that, taken \ntogether, failed to provide reasonable and appropriate security for \nsensitive consumer data. These settlements provide important \nprotections for consumers and also provide important lessons for \nindustry about the need to safeguard consumer information.\n---------------------------------------------------------------------------\n    \\38\\ In the Matter of CardSystems Solutions, Inc., FTC File No. \n052-3148 (proposed settlement posted for public comment, Feb. 23, \n2006). The settlement requires CardSystems and its successor \ncorporation to implement a comprehensive information security program \nand obtain audits by an independent third-party professional every \nother year for 20 years. As noted in the FTC\'s press release, \nCardSystems faces potential liability in the millions of dollars under \nbank procedures and in private litigation for losses related to the \nbreach.\n---------------------------------------------------------------------------\nV. THE COMMISSION\'S EFFORTS TO COMBAT IDENTITY THEFT\n    In addition to our efforts to ensure that businesses take \nreasonable steps to safeguard sensitive consumer information, the \nCommission works in many other ways to address the identity theft \nproblem. Pursuant to the 1998 Identity Theft Assumption and Deterrence \nAct (``the Identity Theft Act\'\'),\\39\\ the Commission has implemented a \nprogram that assists consumers, businesses, and other law enforcers.\n---------------------------------------------------------------------------\n    \\39\\ Pub. L. No. 105-318, 112 Stat. 3007 (1998) (codified at 18 \nU.S.C. \x06 1028).\n---------------------------------------------------------------------------\nA. Working with Consumers\n    The Commission hosts a toll-free hotline, 1-877-ID THEFT, and a \nsecure online complaint form on its website, www.consumer.gov/idtheft, \nfor consumers concerned about identity theft. Every week, the \nCommission receives about 15,000 to 20,000 contacts from victims and \nconsumers seeking information on how to avoid identity theft. The \ncallers to the hotline receive counseling from trained personnel who \nprovide information on steps they can take both to prevent identity \ntheft and to resolve problems resulting from the misuse of their \nidentities. Victims are advised to: (1) obtain copies of their credit \nreports and have a fraud alert placed on them;\\40\\ (2) contact each of \nthe creditors or service providers with which the thief has established \nor accessed an account to request that the account be closed and to \ndispute any associated charges; and (3) report the theft to the police \nand, if possible, obtain a police report. The police report is useful \nin demonstrating to purported creditors and debt collectors that the \nconsumer is a victim of identity theft, and serves as an ``identity \ntheft report\'\' that can be used for exercising various victims\' rights \ngranted by the FACT Act.\\41\\ The Commission\'s identity theft website, \nwww.consumer.gov/idtheft, has an online complaint form where victims \ncan enter their complaints into the Clearinghouse.\n---------------------------------------------------------------------------\n    \\40\\ The FACT Act added a requirement that consumer reporting \nagencies, at the request of a consumer, place a fraud alert on the \nconsumer\'s credit report. Consumers may obtain an initial alert if they \nhave a good faith suspicion that they have been or are about to become \nan identity theft victim. The initial alert must stay on the file for \nat least 90 days. Actual victims who submit an identity theft report \ncan obtain an extended alert, which remains in effect for up to seven \nyears. Fraud alerts require users of consumer reports who are extending \ncredit or related services to take certain steps to verify the \nconsumer\'s identity. See 15 U.S.C. \x06 1681c-1.\n    \\41\\ These include the right to an extended fraud alert, the right \nto block fraudulent trade lines on credit reports and to prevent such \ntrade lines from being furnished to a consumer reporting agency, and \nthe ability to obtain copies of fraudulent applications and transaction \nreports. See 15 U.S.C. \x06 1681 et seq., as amended.\n---------------------------------------------------------------------------\n    The Commission also has taken the lead in developing and \ndisseminating identity theft-related consumer education materials, \nincluding an identity theft primer, ID Theft: What It\'s All About, and \na victim recovery guide, Take Charge: Fighting Back Against Identity \nTheft. The Commission alone has distributed more than 2.1 million \ncopies of the Take Charge booklet (formerly known as ID Theft: When Bad \nThings Happen To Your Good Name) since its release in February 2000 and \nhas recorded more than 2.4 million visits to the Web version. The \nCommission also maintains the identity theft website, www.consumer.gov/\nidtheft, which provides publications and links to testimony, reports, \npress releases, identity theft-related state laws, and other resources.\n    Last fall, the Commission, together with partners from law \nenforcement, the technology industry, and nonprofits, launched OnGuard \nOnline, an interactive, multi-media resource for information and up-to-\nthe minute tools on how to recognize Internet fraud, avoid hackers and \nviruses, shop securely online, and deal with identity theft, spam, \nphishing, and file-sharing.\\42\\\n---------------------------------------------------------------------------\n    \\42\\ See www.onguardonline.gov. OnGuard Online is also available in \nSpanish. See www.AlertaEnLinea.gov.\n---------------------------------------------------------------------------\n    In addition, the Commission will launch this spring a major new \nidentity theft education campaign. The campaign will encourage \nconsumers to guard against identity theft by taking steps to reduce \ntheir risk, keep a close eye on their personal information, and move \nquickly to minimize the damage if identity theft occurs. The \ncenterpiece of the campaign will be a turnkey toolkit--a comprehensive \nhow-to guide that will help promote grassroots education about identity \ntheft.\n    The Commission also has developed ways to simplify the recovery \nprocess. One example is the ID Theft Affidavit, included in the Take \nCharge booklet and on the website. This standard form was developed in \npartnership with industry and consumer advocates for victims to use in \nresolving identity theft debts. To date, the Commission has distributed \nmore than 293,000 print copies of the Affidavit and has recorded more \nthan 1.1 million hits to the Web version.\nB. Working with Industry\n    The private sector can play a key role in combating identity theft \nby reducing its incidence through better security and authentication. \nThe Commission works with institutions to promote a ``culture of \nsecurity\'\' by identifying ways to spot risks to the information they \nmaintain and keep it safe.\n    Among other things, the Commission has disseminated advice for \nbusinesses on reducing risks to their computer systems\\43\\ and on \ncompliance with the Safeguards Rule.\\44\\ Our emphasis is on preventing \nbreaches before they happen by encouraging businesses to make security \npart of their regular operations and corporate culture. The Commission \nalso has published Information Compromise and the Risk of Identity \nTheft: Guidance for Your Business, a booklet on managing data \ncompromises.\\45\\ This publication provides guidance on when it would be \nappropriate for an entity to notify law enforcement and consumers in \nthe event of a breach of personal information.\n---------------------------------------------------------------------------\n    \\43\\ Security Check: Reducing Risks to Your Computer Systems, \navailable at http://www.ftc.gov/bcp/conline/pubs/buspubs/security.htm.\n    \\44\\ Financial Institutions and Customer Data: Complying with the \nSafeguards Rule, available at http://www.ftc.gov/bcp/conline/pubs/\nbuspubs/safeguards.htm.\n    \\45\\ Information Compromise and the Risk of Identity Theft: \nGuidance for Your Business, available at http://www.ftc.gov/bcp/\nconline/pubs/buspubs/idtrespond.pdf.\n---------------------------------------------------------------------------\n    In 2003, the Commission held a workshop that explored the \nchallenges consumers and industry face in securing their computers. \nTitled ``Technologies for Protecting Personal Information: The Consumer \nand Business Experiences,\'\' the workshop also examined the role of \ntechnology in meeting these challenges.\\46\\ Workshop participants, \nincluding industry leaders, technologists, researchers on human \nbehavior, and representatives from consumer and privacy groups, \nidentified a range of challenges in safeguarding information and \nproposed possible solutions.\n---------------------------------------------------------------------------\n    \\46\\ See workshop agenda and transcripts available at www.ftc.gov/\nbcp/workshops/technology. See Staff Report available at http://\nwww.ftc.gov/bcp/workshops/technology/finalreport.pdf.\n---------------------------------------------------------------------------\nC. Working with Law Enforcement\n    A primary purpose of the Identity Theft Act was to provide law \nenforcement with access to a centralized repository of identity theft \nvictim data to support their investigations. The Commission operates \nthis database as a national clearinghouse for complaints received \ndirectly from consumers and through numerous state and federal \nagencies, including the Social Security Administration\'s Office of \nInspector General.\n    With over 1,060,000 complaints, the Clearinghouse provides a \ndetailed snapshot of current identity theft trends as reported by the \nvictims themselves. The Commission publishes data annually showing the \nprevalence of complaints broken out by state and city.\\47\\ Since its \ninception, nearly 1,400 law enforcement agencies have registered for \naccess to the Clearinghouse database. Individual investigators within \nthose agencies can access the system from their desktop computers 24 \nhours a day, seven days a week. The Clearinghouse also gives access to \ntraining resources, and enables users to coordinate their \ninvestigations.\n---------------------------------------------------------------------------\n    \\47\\ See Federal Trade Commission--National and State Trends in \nFraud & Identity Theft (Jan. 2006), available at http://\nwww.consumer.gov/sentinel/pubs/Top10Fraud2005.pdf. The Commission also \nconducts national surveys to learn how identity theft impacts the \ngeneral public. The FTC conducted the first survey in 2003 and is \nconducting a second survey this spring. See Federal Trade Commission--\nIdentity Theft Survey Report (Sept. 2003), available at http://\nwww.ftc.gov/os/2003/09/synovatereport.pdf.\n---------------------------------------------------------------------------\n    The Commission also encourages use of the Clearinghouse through \ntraining seminars offered to law enforcement. In cooperation with the \nDepartment of Justice, the U.S. Postal Inspection Service, the U.S. \nSecret Service, and the American Association of Motor Vehicle \nAdministrators, the Commission began organizing full-day identity theft \ntraining seminars for state and local law enforcement officers in 2002. \nTo date, this group has held 20 seminars across the country. More than \n2,880 officers have attended these seminars, representing over 1,000 \ndifferent agencies. Future seminars are being planned for additional \ncities.\n    To further assist law enforcers, the Commission staff developed an \nidentity theft case referral program. The staff creates preliminary \ninvestigative reports by examining patterns of identity theft activity \nin the Clearinghouse, and refers the reports to financial crimes task \nforces and others for further investigation and possible prosecution. \nIn addition, analysts from the FBI, U.S. Secret Service, and Postal \nInspection Service work on-site at the FTC, developing leads and \nsupporting ongoing investigations for their agencies.\nVI. CONCLUSION\n    The crime of identity theft is a scourge, causing enormous damage \nto businesses and consumers. The unauthorized use of consumers\' SSNs is \nan important tool of identity thieves, especially those seeking to \ncreate new accounts in the victim\'s name. Although current laws place \nsome restrictions on the use or disclosure of SSNs by certain entities \nunder certain circumstances, this information is still otherwise \navailable from both public and private sources, thereby enabling \nidentity thieves to obtain SSNs through legal means as well as illegal \nmeans.\n    At the same time, SSNs are an important driver of our market \nsystem. Businesses and others rely on SSNs to provide many important \nbenefits for consumers and to fight identity theft.\n    There are a number of things that government, industry, and \nconsumers can do to help stem the tide of identity theft. First, both \ngovernment and industry need to consider what information they collect \nand maintain from or about consumers and whether they need to do so. \nEntities that possess sensitive consumer information should continue to \nenhance their procedures to protect it. The Commission will continue \nits law enforcement and outreach efforts to encourage and, when \nnecessary, require better protections.\n    Second, industry should continue the development of improved fraud \nprevention methods to stop identity thieves from misusing the consumer \ninformation they have managed to obtain. In this regard, the FACT Act \nshould prove instrumental by requiring the bank regulatory agencies, \nthe NCUA, and the FTC to develop jointly regulations and guidelines for \nfinancial institutions and creditors to identify possible risks of \nidentity theft.\\48\\\n---------------------------------------------------------------------------\n    \\48\\ 15 U.S.C. \x06 1681m(e).\n---------------------------------------------------------------------------\n    Third, the Commission will continue and strengthen its efforts to \nempower consumers by providing them with the knowledge and tools to \nprotect themselves from identity fraud and to deal with the \nconsequences when it does occur. As discussed above, new consumer \nrights granted by the FACT Act should help consumers minimize the \ndamage.\n    Finally, the Commission will continue to assist criminal law \nenforcement in detecting and prosecuting identity thieves. The prospect \nof serious jail time hopefully will discourage those considering \nidentity theft from perpetrating this crime.\n    The Commission looks forward to continuing to work with Congress to \naddress ways to reduce identity theft.\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Thank you, Mr. Winston. Can you fill us \nin on what your agency does specifically to try to ensure \ncompliance with the laws that you talked about in your \ntestimony that fall in your jurisdiction?\n    Mr. WINSTON. Well, we go about it in many ways. First and \nforemost, we are a law enforcement agency and we investigate \nand take action against companies that violate the laws that we \nenforce, for example, cases against companies that fail to \nsafeguard information that they have. We brought 12 cases to \ndate. We have a number of others under investigation. I think \nwe have sent a pretty clear message to the business community \nthat this is an important requirement.\n    At the same time, we are strong believers in education, \nboth for businesses and consumers. That is always the first \nline of defense and we work very hard in that regard.\n    Chairman MCCRERY. Ms. Fagnoni, you talked about the fact \nthat many States have enacted laws that restrict the use of \nSSNs. Can you give us an idea of how those actions by States \naffect businesses and commerce in those States and maybe even \nhow it affects businesses and commerce across the country?\n    Ms. FAGNONI. The work we did, we had more information about \nthe impacts on different government activities and the ease of \ngetting information. One example of how business and commerce \nhas been affected by these laws is that, particularly when a \nState like California, a large State such as California enacts \na law, for example, the law where any entity where there is a \nsecurity breach involving information, private information, \npersonal information from somebody who resides in the State of \nCalifornia, the California law is that those individuals have \nto be notified. Some large companies now have on that basis \nmade it a practice to notify anyone when there is a security \nbreach, regardless of what State they happen to live in, based \non, perhaps the pressure and the precedent in having certain \nlaws in place.\n    That is one example where companies have had to adapt and \nadjust to some of those laws. Having different laws in \ndifferent States probably can also cause some challenges for \npeople who do business in multiple jurisdictions. As I said, a \nlot of what our studies have shown is that once, whether it is \ngovernment or private entities become more aware of the ways in \nwhich the SSN can be fraudulently used and they start to take \nactions on their own to better secure the information, they can \nstill continue to use the SSN for the purposes that are very \nimportant to commerce. They have a better sense and a clear \nunderstanding of the need to protect the exposure of that \nnumber beyond the uses for which it is needed.\n    Chairman MCCRERY. Thank you. Would you talk a little bit \nabout the Internet and the availability of SSNs on the \nInternet? Should we be looking at some new Federal laws \nregarding public display of SSNs?\n    Ms. FAGNONI. In the work we did looking at government and \nselected private sector use of SSNs, we did not find a large \npercentage of entities that were placing the SSNs on the \nInternet, particularly in the local and State government \nlevels. Most of the information that is publicly available \nthrough those entities is on paper or microfiche or microfilm \nand people actually have to go to a location, such as a \ncourthouse or someplace like that, and actually look for the \ninformation.\n    We do have some work ongoing right now where we are looking \nat the information resellers who are selling information via \nthe Internet and we will have some information to report fairly \nsoon on that. It does raise some questions about how carefully \nsome information sellers are paying attention to who is \nactually asking for the information and what kinds of \nsafeguards are in place to ensure that the information is being \nprovided only to those where it is an appropriate use.\n    Chairman MCCRERY. Thank you. Mr. Becerra?\n    Mr. BECERRA. Thank you, Mr. Chairman, and thank you to the \ntwo of you for your testimony.\n    Let me ask a question and revert back to the testimony of \nour two colleagues who were just here and talked about using \nthe SSN for purposes of trying to determine one\'s eligibility \nto work in this country. Any comments on what you heard in the \ndiscussion that took place among the Members on that particular \nproposal?\n    Ms. FAGNONI. We don\'t really have work that would comment \non it directly, but there is a difference. First of all, they \nwere talking about having a card that was tamper-proof, and \nthere are all sorts of issues associated with looking at the \ndifferent options and what would be appropriate and what the \ncost would be.\n    There also is an issue which somebody raised about the \ninformation on the card which is only going to be as good as \nthe information in the databases in DHS and SSA. We have \nreported on the fact that to the extent that, for example, \ninformation about somebody\'s visa status, if that is not kept \nup to date and isn\'t updated somehow through the encryption, \nthen that is going to limit the usefulness of the database.\n    There is a whole separate issue on the deterrent effect, \nwhich I really can\'t comment on.\n    Mr. BECERRA. Okay.\n    Mr. WINSTON. I found the discussion very interesting and I \nthought the point that you made actually was the one that I was \nthinking of, as well, and that is you can have a national \nnumber for immigrants or even for citizens, but any time you \nhave a number that is the key to benefits, it is going to \npotentially be something that is valuable to identity thieves. \nThe trick is to find a way of identifying people and \nauthenticating who they are without having that information get \nin the hands of the wrongdoers and that is a very difficult \ntask.\n    Mr. BECERRA. As we explore how we can better protect the \nSSN, is there something that we have learned in these \nexaminations about best practices or what some either public or \nprivate sector agencies, enterprises are doing to try to \nprotect the number, anything that you can tell us that can help \nus with regard to this ongoing examination?\n    Ms. FAGNONI. Keying off Mr. Winston\'s testimony, in the \nwork we did where we looked at four sectors--banking, financial \ninstitutions, telecommunications, and tax preparers--it was \nclear that because of the laws and the regulatory structure \nsurrounding the banking and financial institutions industries, \nthere are a lot more protections in place regarding the \nprotection of personal information, including the SSN.\n    Particularly in telecommunications, there really are no \nlaws that are designed to explicitly ensure that \ntelecommunications companies are protecting SSNs. The companies \nare relying on individual contracts and things like that.\n    As a matter for the Congress, one option would be to look \nat regulatory structures in terms of protecting information and \nconsider whether or not those could be more broadly applied, or \nconversely, to look at some other specific sectors that don\'t \nnow have laws in place that might warrant them.\n    Mr. BECERRA. Let me ask just one last question, and if you \nwish to comment on something else, that is fine so long as I \nhave time. I am not sure how to phrase it. Do we need to have \none identifier, or should we ask all these various industries \nto have their own identifiers? The banking industry or \nfinancial services, you all keep an identifier that is for your \npurposes. Credit bureaus, those who are checking status of your \ndemographic, your activities, whether purchasing or doing \nanything else, you keep your own number. The Federal \nGovernment, you keep your own number. State, driver\'s license \nand all the rest, you keep your own number.\n    Should we have one, or should we, for purposes of trying to \nmake sure we don\'t have a number that can be stolen or has that \nvalue if it is stolen, should we try to move toward something \nthat says, you all keep your own numbers and that way no one \ncan steal that much value from an individual when they get that \nidentifier?\n    Ms. FAGNONI. The reason the SSN is so valuable is because \noften, and I am sure you will hear this from the next panel, \nsomebody who is trying to check somebody\'s credit or make sure \nthat the individual they are talking to is the appropriate \nperson and they should be sharing certain information, the only \nway they can ensure somebody\'s identity, looking across \ndifferent kinds of pieces of information, is through that \ncommon identifier, the SSN.\n    At the same time, though, we have a lot of examples where \nmore and more kinds of entities are moving away from the \ndisplay of the SSN. I think there is a difference between \nneeding it and protecting it because it is a very important way \nto protect against fraud. At the same time, whether it is a \ndriver\'s license or a health care card or whatever, over the \npast several years cards that routinely used SSNs now either \nfirst voluntarily and then now routinely across the board use \nother special identifiers unique to that particular entity for \ndisplay purposes. They still have that SSN, behind the scenes \nthat they need for data matching and things like that.\n    Mr. WINSTON. I would just add very briefly, I agree with \nthat, and there is a lot we can do to convince people to stop \nusing SSNs when they don\'t need to, but at the same time, we \nhave to look at the back end, and the back end is somebody \nappears before you with an SSN and wants to take out a loan. \nHow do you make sure that person is who he says he is? It is \nthe fact that the SSN is being used for that purpose, as well \nas for the identification purpose, that creates the problem. \nThat is the key that unlocks the door to identity theft. The \nmore we can go to systems of passwords, PINs, and get away from \nusing the SSN as the authenticator, I think the better we will \nbe.\n    Mr. BECERRA. Thank you. Thanks very much, Mr. Chairman.\n    Chairman MCCRERY. Mr. Brady?\n    Mr. BRADY. Thank you, Mr. Chairman. A couple of questions, \nthree, really. The first two are fairly direct. Identity theft \nis such a big issue. What percentage, would you guess, of \nidentity thefts start with a stolen SSN?\n    Mr. WINSTON. I can talk about the surveys we have done and \nthat others have done, which indicate that about two-thirds of \nidentity theft is what is called account takeover, and that is \nwhere somebody gets your credit card number or your bank card \nnumber and gets into your account. Typically, that doesn\'t \nrequire an SSN to do.\n    The other one-third is new account fraud, where they \nactually go out and open a new account in your name. Typically, \nalthough not always, typically, you need an SSN to do that kind \nof fraud. It is about one-third.\n    Mr. BRADY. That leads right to the second question. What is \nthe most common way of obtaining a stolen SSN? Is it a stolen \ncard? Is it mail theft, computer hacking, information \nresellers? What is the most common of those, would you guess?\n    Mr. WINSTON. It is a little hard to tell from the surveys \nbecause most people don\'t know how their identity was stolen in \nthe first place. They just know it happened. They don\'t know \nwho did it. They don\'t know how it got done. If you look at \njust the data for people who do know what happened, you find \nthat most of it is done through lost wallets or friends, \nrelatives who get a hold of your information. That is not \nnecessarily representative of half or more of the people who \ndon\'t know. There are a lot of potential sources. It is really \nhard to tell what is the biggest.\n    Mr. BRADY. A final question. Part of the, I think, \ncomplexity is the issue of information resellers. Even if we \nare able to sort of contain this issue at the source, as it \ngets sold, integrity becomes less and loose and things happen. \nI will ask both of you, who is responsible for ensuring that \ninformation resellers and financial institutions and those to \nwhom they sell SSNs only disclose according to the law and who \nmonitors it and what kind of resource do we use to tackle that \nproblem?\n    Ms. FAGNONI. Well, quickly, initially, who has authority, \nif anyone, is dependent on what industry is involved, and that \nis where we found, at least of the four industries we looked at \nand other examples we have, it varies. It is based on the laws \nthat regulate that particular industry.\n    In some cases, information resellers, for example, consider \nthemselves to be financial institutions and therefore subject \nto the different kinds of laws regulating that industry. In \nother cases, they don\'t and it is honestly not clear if there \nis any regulatory framework.\n    Mr. WINSTON. Just to elaborate on that, generally speaking, \nresellers get SSNs from credit bureaus. Credit bureaus get it \nfrom financial institutions. That is subject to the Gramm-\nLeach-Bliley Act (P.L. 106-102). There are restrictions on \npeople who buy information from resellers in how they can use--\nhow they can get the information and how they can use it. We \nare responsible for enforcing that law as to the non-bank \nentities. The banking agencies are responsible for the banks.\n    Mr. BRADY. How much resource do you put toward that?\n    Mr. WINSTON. We have a new division at the FTC, the \nDivision of Privacy and Identity Protection, which is devoted \nsolely to issues of identity theft, consumer privacy, ensuring \nthat consumer information is protected. We have a staff of \nabout 30 people who are looking at these issues and enforcing \nthe law.\n    Mr. BRADY. For your agency, can you guess or do you know \nhow many businesses have been investigated, information \nresellers, for example, or businesses using it fraudulently \nhave been investigated and successfully prosecuted?\n    Mr. WINSTON. There have been a number, but the most recent \ncase against Choice Point is a good example.\n    Mr. BRADY. Sure.\n    Mr. WINSTON. Choice Point is one of the largest data \nbrokers in the country and they didn\'t have procedures in place \nto ensure that the people who called them up to buy SSNs and \nother information were legitimate. As a result----\n    Mr. BRADY. Thankfully, that got a lot of attention, but are \nwe talking about thousands of businesses across the country are \ninvestigated, hundreds are investigated, dozens are \ninvestigated?\n    Mr. WINSTON. Keep going.\n    [Laughter.]\n    Mr. BRADY. Getting a little smaller, isn\'t it.\n    Mr. WINSTON. We are a small agency. I don\'t know what the \nnumber would be. It is certainly not in the hundreds or \nthousands. That is all we can--that is all that we have the \nresources to do.\n    Mr. BRADY. Thank you, Mr. Chairman, and thank you, both \npanelists.\n    Ms. FAGNONI. Thank you.\n    Chairman MCCRERY. Thank you, Ms. Fagnoni. Thank you, Mr. \nWinston.\n    Our next panel is Nicole Robinson, North Atlantic Coast \nVolunteer Coordinator, Identity Theft Resource Center, San \nDiego, California; Mary McQueen, on behalf of the Council of \nState Court Administrators, Williamsburg, Virginia; Erik Stein, \nmember of BITS Fraud Reduction Steering Committee; Stuart \nPratt, President and CEO of Consumer Data Industry Association; \nand Bruce Hulme, Legislative Director, National Council of \nInvestigation and Security Services from New York. Welcome, \neverybody.\n    The same rules apply. Your written statements will be \nincluded in the record in their entirety, but we would ask you \nto summarize those statements in about 5 minutes.\n    We will begin, Ms. Robinson, with you. Thank you for \ncoming. You may begin.\n\n STATEMENT OF NICOLE ROBINSON, NORTH ATLANTIC COAST VOLUNTEER \n    COORDINATOR, IDENTITY THEFT RESOURCE CENTER, SAN DIEGO, \n                           CALIFORNIA\n\n    Ms. ROBINSON. Good afternoon, Mr. Chairman, Members of the \nCommittee. Thank you for the opportunity to testify on behalf \nof this very important topic.\n    My name is Nicole Robinson, and besides being the North \nAtlantic Coast Coordinator for the Identity Theft Resource \nCenter, I am also a victim of identity theft, and I want to \nstart first off to tell you--try to be brief about my identity \ntheft case.\n    It first started in 2000 and I was notified by a fraud \ninvestigator, Kay Jewelers said someone had used my SSN to open \nan instant credit account. That first night, she bought watches \nand a ring totaling $2,300. The next night, she came trying to \nmax out the account and they were alerted to it because people \ndon\'t usually do that with jewelry store accounts.\n    Well, I contacted the three credit reporting agencies on \nthat Monday. It was very difficult to get my credit reports \nbecause she had used different addresses in Texas and I \ncouldn\'t get my own credit reports. I soon came to find out \nthat she had applied for a personal loan at my mortgage lender. \nShe was picked up by the Bear County police getting a personal \ncheck in my name. My mortgage lender never contacted me, \nalthough they knew they held a mortgage for me in Maryland and \nshe was in Texas. The police let her go that day. She promised \nthat she wouldn\'t do it again. She cried. She said she didn\'t \nknow what she was doing was wrong and they let her go home.\n    After that, since she knew I had a mortgage, she applied \nfor a mortgage several days later. She continued to apply for \ncredit, even though she had been picked up by the police. She, \nin a 3 month period, got $36,000 in goods and services. She had \na Geico car insurance policy in my name and Geico would not \ngive me the VIN number off the vehicle so I could track back to \nthe dealership that sold it because they said they had to \nprotect her privacy.\n    As time went on, she was eventually indicted and she pled \nguilty to two counts of misusing my identifying information. \nShe served no time in jail. She was ordered to pay restitution. \nI have only seen a small portion of the restitution thus far.\n    As time has gone, I have borne the burden of her theft of \nmy identity. I continue to get her collection notices at my \nhome in Maryland. As recently as last summer, I got a \ncollection notice from a collection agency where Nicole \nRobinson--and that is her name, her name is Nicole Robinson, as \nwell--she had gone to a dentist in Texas while she was in \npolice custody and had a tooth extracted. Well, of course she \ndidn\'t pay for it and so the collection agency started to look \nfor her. Instead of finding her in Texas, they sent a \ncollection notice to my home in Maryland.\n    I have continued to get collection notices for bad checks \nthat she has written. I also get preapproved credit card offers \nat my home in her name, and the only reason why I know it is \nfor her is because we have a different middle initial and they \nalways come with her middle initial.\n    As I started to get my credit reports, in 2004, I got a 54-\npage credit report. It had 170 accounts on it. A hundred-and-\nthirty of them were in collections. It had 42 different names \nand 65 different addresses. I was notified by another credit \nreporting agency that my SSN resided on five different credit \nreports.\n    Even as recently as this year, when a mortgage broker ran \nmy credit report, her bad debts, even a judgment from an \napartment complex in Texas, is on my credit report, and it is \nnot on the credit reports that the credit reporting agency \nsends to me, but it is on the credit report that they disclose \nto the lenders.\n    As a result of me being a victim of identity theft, I do \nspeak to consumer groups about protecting your SSN. The way my \nSSN was stolen by Nicole Robinson is that she worked for a \nbusiness called Care Mark, and Care Mark used to provide mail-\nin pharmaceutical services for a law firm where I used to work. \nEven though I was no longer an employee of the law firm, she \nstill had access to my information in their databases. I \nultimately found out that she used the SSN of several people \nnamed Nicole Robinson and she was able to get cars and jewelry, \nand when she bought a vacuum cleaner, somebody reported to the \npolice in Texas that she had a warehouse full of stuff that she \nhad stolen.\n    I just want to go over briefly some of the recommendations \nfrom the Identity Theft Resource Center on securing data. We \nrealize that businesses do use the SSN. It is so much a part of \nwhat a lot of businesses do. We think that businesses should \ntake extra precautions to secure the SSN.\n    In my case, Nicole Robinson had access to my SSN years \nafter I was a member of the health plan that required me to use \nmy SSN as an identifier. She should have never had access to \nthat number because I was no longer a member of that plan. Even \nif she had access to my records, my SSN should have been \nredacted in whole or in part.\n    We believe that consumer education is key. A lot of people \ndon\'t see the risk in carrying their Social Security cards in \ntheir wallets and we believe that when you get your annual \nstatement from the SSA, there should be a consumer alert on \nthere about protecting your SSN.\n    We also believe that businesses should assume \nresponsibility for the protection of your SSN. If they require \nit, they should also protect it.\n    Thank you very much.\n    [The prepared statement of Ms. Robinson follows:]\n     Statement of Nicole Robinson, North Atlantic Coast Volunteer \n   Coordinator, Identity Theft Resource Center, San Diego, California\n    Members of the committee: Thank you for the opportunity to provide \nboth written and oral testimony for your committee today and for your \ninterest in the topic of identity theft.\n    The oral portion of our testimony will be provided by Nicole \nRobinson, a survivor of identity theft, and the highest ranking ITRC \nvolunteer on North Atlantic Coast.\n    The nonprofit Identity Theft Resource Center (ITRC) is passionate \nabout combating identity theft, empowering consumers and victims, \nassisting law enforcement, reducing business loss due to this crime and \nhelping victims. We also realize that you are in a difficult position \nof trying to impose laws that may impact consumers, business and \ngovernment.\n    However, ITRC firmly believes that it is possible to find a balance \nbetween the creation of strong identity theft laws to protect consumers \nand businesses and allowing the business community to flourish and \ngrow. It is critical that all parties be considered in any legislation \nyou pass and in all of your deliberations. After all--In each case of \nFinancial Identity Theft there are at least two sets of victims--the \nindividual whose SSN was used and the business that has lost services, \ngoods or money. We all victims of this crime and we appreciate your \ntime in addressing this issue.\n    We are honored by your invitation and will continue to make our \nopinions available upon request to your representatives over the next \nfew months as you grapple with this complex crime and its many issues.\nIntroduction:\n    Governmental agencies at all levels, businesses and consumers have \nfor ease and convenience tied and associated many critical elements of \ndaily life to the individual Social Security Number (SSN). The \nindividual number is the primary key to the individual\'s credit \nhistory, work history education and health information. You must have \none to work, gain tenancy, credit and to identify individuals on tax \nforms.\n    More and more business and entities are collecting personal \ninformation about each and every one of us. These can range from your \nbank to the soccer league that your child plays in. Add to that number \nthe schools where you or your child attended, all the job applications \nyou have ever filled out, the Funeral Home that is preplanning your \nfinal arrangements and the many health facilities that you have used. \nSome veterinarians, self-storage units and even car rental companies \nask for SSNs.\n    In some cases there is a valid reason to collect the information \nand the Identity Theft Resource Center holds that it should be allowed \nto continue. Our concern lies not in the collection of the Social \nSecurity number but in the use, storage, access and misuse of this key \ninformation.\n    It must be noted that the crime of identity theft is not a \nparticularly new crime. It is more that in the current environment of \nelectronic credit and business identity theft has become extremely \nprofitable and safe for the thief. The thief faces little chance of \napprehension with minimal penalties for the theft of thousands of \ndollars.\n    Each day the thieves grow more accomplished at their task. Now it \nis time for businesses, governmental agencies and consumers to adopt a \nmore proactive position on the value of the Social Security number as a \nmarketable commodity. Consumers need to realize it has value. \nBusinesses and governmental entities need to accept responsibility for \nthis item of value, the Social Security number. We need to create a \nplan that focuses on all involved parties and not just on the business \ncommunity.\n    Numerous surveys have proven that consumers do not feel trust for \ncompanies or the government proactively protecting their personal \nidentifying information. They believe, with cause, their information is \naccessible to too many people and handled without protection. In order \nto increase customer, employee and client trust, new security processes \nmust be implemented as soon as possible.\nFindings and Recommendations:\nSSN as an identifier on items in wallets\n    Finding: Too many people carry their Social Security number on \ntheir person, in the form of the actual Social Security card, health \ninsurance cards, Military ID cards, employee id cards or Medicare/\nMediCal cards and driver\'s license numbers. Wallets are primary targets \nby identity thieves, pickpockets and drug addicts who hope to profit \nthis information.\n    Recommendation: The Social Security number should not be used as an \nidentifier in any circumstances and should never be on cards carried in \nthe wallet, even on the magnetic strip due to improvements in skimming \ntechnology. Randomized numbering systems should be used that match the \nSSN in a well-protected database when necessary such as for Medicare \nbenefits.\nConsumer Education\n    Recommendation: That all Social Security cards come with an \nadvisory with the original card and that this advisory should also be \nsent out yearly with the person\'s work benefit statement. This advisory \nshould include under what circumstances one should give out a SSN, when \nnot to, a telephone number to call with questions or to file \ncomplaints, and not to carry a SS card in one\'s wallet, palm pilot or \nlaptop.\n    Recommendation: That the SSA work with other governmental and \nprivate entities to continue to educate consumers about scams that \ninvolve the SSN. A study of the SSA site only included one scam warning \nas the beginning of March 2006.\nOvercollection/misuse of the SSN\n    Recommendation: Too many companies are unnecessarily asking for a \nperson\'s SSN. While it may not be practical to limit the collection of \nthe SSN, a blanket liability should be incurred all entities that \ncollect this information from an individual or secondary source. It is \nnot unreasonable for any individual to expect basic standards of \nprotection of the information obtained by the entity doing the \ncollection. Federal, state and private right of actions should included \nin any bill considered in order for there to be effective encouragement \nto self-enforce these standards.\nInformation Security\n    Finding: The number of publicized security breaches during 2005 \nclearly indicates a serious problem. Whereas it is not possible to \nbuild an impenetrable security system around data, it is clear that \ncompanies and governmental agencies need to have a tighter control on \ninformation. This rule cannot just apply to businesses. All \ngovernmental agencies need to be held to the same standard and be a \nleader in this movement.\n    Recommendation: Companies and all levels of governmental agencies \nshould be required to do an information risk assessment of both paper \nand electronic documents containing a Social Security number. This \nassessment should include the ability to follow information from the \npoint of entry to beyond disposal, including the auditing of any \nperson, department or storage space. A written policy should be \ndesigned that limits access to the SSN, describes the protection of the \ninformation and how information should be destroyed. ITRC strongly \nrecommends a breach notification similar to California\'s or New \nJersey\'s current laws.\nSSN as an identifier for customers or employees\n    In order to limit access of an individual\'s SSN, all companies \nshould assign a separate account number and the SSN should never been \nseen on a call center screen by an employee of the company. There are \nmany other ways, including passwords, to verify a person\'s identity.\nDocument Disposal\n    Finding: A popular spot identified by law enforcement and other \ninvestigative entities is the unshredded documents and data recklessly \ndiscarded into or near trash cans and dumpsters. Only several states \nhave passed mandatory document disposal laws stating that paper and \nelectronic documents must be rendered unreadable prior to disposal.\n    Example: A recent situation occurred in Los Angeles when the \nDepartment of Social Services had boxes of medical records, application \nforms and other documents with SSN put in boxes by a trash can. These \ndocuments never had been shredded but were being sent whole to China \nfor recyling. Unfortunately they were also seen blowing in the wind and \npeople went through boxes for information knowing they were out there.\n    Recommendation: A law that states that all documents, no matter \nwhat form they are in, must be rendered unreadable prior to leaving the \nentity that no longer wishes to store them.\nEducational Facilities and SAT testing\n    Finding: In 2005 more than half of the disclosed breaches were \neducational facilities, mainly colleges and universities. The \nUniversity of Colorado had 4 breaches in the last 14 months. After \nspeaking with IT departments and administrators at several of these \ncolleges, it is clear that changes need to be made. Parents send \nchildren to colleges to help them on their career paths. One identity \ntheft problem can stop a future before it begins.\n    Recommendations: First, SSN should never be a student\'s public \nidentification number, computer access number or publicly used for any \nother purpose. These steps will significantly limit the number of \nprofessors who have lost or had laptops stolen with student numbers and \nstop roster with names and SSNs from circulating classrooms.\n    Second, other than a few departments that are involved in payroll, \nstudent loans, scholarships and such should have access to the \nstudent\'s SSN. While it is easy to track a student by SSN it is easy to \nhave that information securely stored in a database with limited access \nso that when a student asks for a transcript or school records they be \nfound. However, the SSN should never been printed in full on any \ndocument sent through the mail.\n    Third, the ``College Boards,\'\' the company that does SAT testing \nmust immediately stop asking students for SSN and stop placing them on \nmailing labels. ITRC has had numerous calls about this activity.\nImmigrants who no longer need or wish to have a SSN\n    Finding: ITRC has heard from a number of people who lived in the \nUnited States for a limited period of time or have moved from the \nUnited States to live permanently in another country. They would like a \nway to prevent any possible use of their SSN now that they no longer \nneed it.\n    Recommendation: The creation of a national credit freeze program \nwould not only help victims of identity theft and businesses from \ngiving cards to thieves but would also solve this problem. However, \nthat only solves the financial side of the problem. Other solutions \nwould have to be found within the SSA so that those numbers would be \ntagged as inactive for employment or benefit purposes.\nSSN of the Deceased\n    Finding: According to the SSA not all deceased individuals are on \nthe Master Death Registry. It is partially consumer driven (change in \nbenefit status) and partially populated by some states that do report \nall deaths to the SSA.\n    Recommendation: All governmental agencies that issue a death \ncertificate should report that death to the SSA either directly or via \na state program. Since this Registry is available to the credit \nreporting agencies and Department of Motor Vehicles this would \nsignificantly stop the use of a dead 7 year old\'s SSN by an adult.\nSSNs sent through the mail\n    Finding: ITRC receives numerous inquiries from parents who never \nreceive their newborns Social Security cards. Either they have been \nlost or intercepted by a would-be identity thief.\n    Recommendation: After talking with the Chief Privacy Officer of the \nU.S. Postal Service, there are a number of ways that the Post Office \nand SSA can work together to help insure the delivery of these \ndocuments. ITRC recommends that a committee be formed and a new \nprocedure implemented within six months.\n    Finding: Companies still send information via the U.S. Mail with \nSSNs on mailing labels or in the body of the letter. In some cases it \nwould clear to an identity thief that this envelope contains valuable \ninformation.\n    Recommendation: That mailing labels may never include a SSN and \nthat when a SSN is included in the body of a document that it must be \npartially truncated.\nIRS and selling of information\n    ITRC would be remiss if it did not comment on the plan being \nconsidered by the IRS to allow the sale by tax preparation services of \nour tax returns or personal tax information. Many people get numerous \npapers from tax preparers and just sign them. They go unread or may be \nbeyond an individual\'s reading ability. This proposed plan must not be \nimplemented. It creates another public record that will benefit thieves \nmore than anyone else. If this must be allowed then there can be no \nallowances for acceptance of any release that is not clear and \nspecific.\nPublic Records\n    Recommendation: The SSN should never be published on the Internet \nby a business or governmental entity including court records. In \nresponse to those who state they need that information, it can be \nspecifically requested of the court, with appropriate redaction of \nunnecessary information that may place the individual in harm\'s way. \nThis includes witness and victim information, family records during \ncustody and divorce hearings and bankruptcy hearings.\n    Recommendation: In a court proceeding where information must be \nexchanged between opposing sides, the SSN should be at least partially \nredacted in order to protect the sanctity of that number.\nNew Laws--A Standard and not the Ceiling\n    The concepts discussed above are intended to benefit business and \nconsumers. While we understand that companies don\'t want to deal with \n50 different laws, it is also important to note that some states want \nto hold state and local governmental agencies and businesses to a \nhigher standard than the ones recommended above. Any federal law should \nbe a standard, to cover those citizens in states currently without \ninformation protection statutes and not pre-empt stronger state laws.\nIn Conclusion:\n    Protecting Social Security numbers from identity thieves needs to \nbe everyone\'s job--not just the consumers. We need businesses and \ngovernmental agencies to work cooperatively with consumers to keep this \nvaluable number out of the hands of those who have no regard for the \ndamage they cause individuals and companies.\n    Businesses cannot afford to continue to lose money to identity \nthieves. While the numbers discussed in terms of fraud loss may sound \nlike a trickle now, it is going to worsen. Identity thieves are more \nsophisticated, meth addicts have turned to this crime for money for \nfixes, and information trafficking is big business. Without required \ncontrol procedures for the handling of Social Security numbers, this \ncrime will worsen and our economy will suffer.\n    Its going to require the reeducation of consumers, businesses and \ngovernmental agencies. It going to require new behavior patterns, new \nways of controlling information in the workplace and strict vigilance \nagainst new trends and attacks.\n    The proactive and not reactive protection of the Social Security \nnumber is in your hands. This small nine-digit number has the ability \nto destroy a company or an individual when misused. It is clear that \nsome states have taken great strides to protect consumers. \nUnfortunately some business groups believe that anything that will \nbenefit consumers will harm them and have fought change. Consumers \nblame businesses.\n    This is not a time for finger pointing. The blame game must end. We \nmust be on the same team fighting a battle against this Goliath if we \nare to win. We must realize that we are one people and anything that \nharms one of us harms us all.\n    Thank you for your time and interest.\n    Linda Foley\n    Jay Foley\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Thank you, Ms. Robinson. Ms. McQueen?\n\n STATEMENT OF MARY C. McQUEEN, PRESIDENT, NATIONAL CENTER FOR \n   STATE COURTS, ON BEHALF OF THE CONFERENCE OF STATE COURT \n                         ADMINISTRATORS\n\n    Ms. MCQUEEN. Thank you, Mr. Chairman, Mr. Levin, Members of \nthe Subcommittee. I am Mary McQueen. The Conference of State \nCourt Administrators is pleased to present testimony on today\'s \nhearings before this important Committee.\n    Before I begin my remarks, I would like to provide some \nbackground about who that group is, and I submit testimony on \ntheir behalf. I am a former member of the Conference of State \nCourt Administrators, having served as the Chief Administrative \nOfficer for the court system in the State of Washington for 25 \nyears, and most recently assumed the position as the President \nfor the National Center for State Courts. The National Center \noperates in coordination with the Conference of State Court \nAdministrators and Chief Justices in a similar way that the \nFederal Judicial Center operates with the Federal judiciary.\n    The Conference of State Court Administrators and the \nConference of Chief Justices represent the top judicial \nofficials and chief administrative officers in the 58 States, \nCommonwealths, and U.S. Territories, and we work very closely \ntogether with the chief justices to develop best practices to \nimprove the administration of justice. You may know that more \nthan 98 percent of all judicial proceedings in the United \nStates are in State courts that consist of over 30,000 judges \nand over 16,000 courts.\n    Mr. Chairman, let me begin by informing you that the State \ncourts have taken several important steps to protect individual \nprivacy and we share the Committee\'s concerns. The State courts \nhope to partner with the Chair and the Members of this \nSubcommittee in your efforts to increase those privacy steps.\n    A question we are always asked is why do State courts need \nSSNs? What is the State courts\' interest in collecting those \nnumbers, and why do State courts require parties to provide \nthem in litigation? I would like to just briefly identify five \ndifferent uses of the SSN in State courts.\n    The first and obvious one to those of you who are members \nof the bar is to ensure that accurate information is placed \nbefore a fact finder. We want to ensure, especially in family \nlaw cases, that we have access to the information that is \nnecessary to determine child support, to distribute property, \nand to determine paternity.\n    Secondly, we also need to identify the parties. Courts \noften use SSNs to identify criminal defendants that lack \nfingerprint information.\n    We also use SSNs to enforce judgments in court orders. \nCourts often order restitution or the repayment of fines as a \nlegal judgment, and SSNs have become the universal commercial \nidentifier for use in monetary penalties. Litigants\' SSNs are \nalso necessary for use in State income tax intercept programs, \nwhere outstanding monetary judgments are deducted from State \nincome tax returns. Federal law now requires State courts to \nplace a party\'s SSN in records relating to divorce and child \nsupport decrees, and in October 1999, that requirement was \nextended to require SSNs for all children to whom support is \nrequired to be paid.\n    We also need SSNs to create jury pools and to pay jurors. \nIt requires us when we issue a check to jurors that that income \nis reported, and we are required to have SSNs for those \nindividuals.\n    Finally, we use SSNs to notify the SSA of incarcerated and \nabsconded persons. The SSA cuts off payments to persons \nincarcerated in all Federal, State, and local prisons or jails \nwho are fugitives from justice and they need to identify those \npersons. While traditionally that information comes from \ncorrectional agencies, the courts initially provide those \nagencies with that information.\n    As previously mentioned, the Welfare Reform Act (P.L. 104-\n193) does require courts to collect SSNs on court orders \ngranting divorces, providing for child support, or determining \npaternity, and SSNs can appear in many financial records, such \nas tax returns, which are required to be filed in many court \nproceedings.\n    We were encouraged by some of the language that accompanied \nH.R. 2971 in the report dealing with incidental versus non-\nincidental appearances of SSNs on public records and we would \nencourage that if you move forward, we would like to work with \nyou on looking at some of those provisions.\n    In drafting Social Security legislation, we respectfully \nrequest that you ask members of the court community participate \nin those discussions.\n    Finally, in an effort to increase privacy and reduce the \npossibility of identity theft from court documents, the chief \njustices and the State court administrators have established a \nStanding Committee on Court Privacy and Access to Court \nRecords. They have adopted national guidelines and model court \nrules, and we have identified three best practices. I would \ndraw your attention to our visual aid here.\n    These best practices include creating basically two sets of \nrecords. The State of Washington, the States of Michigan, \nVermont, and South Dakota have adopted this approach, where \nbasically in the types of records that incorporate sensitive \ninformation as well as SSN, there is a special procedure for \nsealing this information, placing them in a separate file, and \nwhen someone comes to the counter and asks to see the court \nfile, those records are removed in the envelope and not \nprovided to the public.\n    We have also identified a best practices that we give an \nalert to the filing parties and make sure that they know they \nare responsible for including any SSNs in the documents that \nare filed and make sure that on all court model forms, that \neverybody uses, that there is an alert saying your SSN may be \navailable, so please consider not including that.\n    Also, as part of the two sets of records, several States \nhave identified confidentiality filing forms, where you put \nthat information on one sheet, not incorporate it into the \ncourt documents, and that one sheet is sealed.\n    Finally, when requiring SSNs, we have recommended that you \nonly use four digits that would appear in the court record.\n    Mr. Chairman, we recognize the threat of identity theft as \nreal. We commit that the State courts want to do our part in \neliminating that opportunity. I have presented several reasons \nwhy the courts utilize SSNs as well as the solutions that we \nare working to implement.\n    Thank you for allowing us to participate in this discussion \nand I will be happy to answer any questions you may have.\n    [The prepared statement of Ms. McQueen follows:]\n Statement of Mary C. McQueen, on behalf of the Council of State Court \n                 Administrators, Williamsburg, Virginia\n    Mr. Chairman and Members of the Subcommittee,\n    The Conference of State Court Administrators (COSCA) is pleased to \npresent testimony on today\'s fifth in a series of hearings on Social \nSecurity Number High Risk Issues.\nSUMMARY\n    Mr. Chairman and members of the subcommittee, the state court \ncommunity has been grappling with the issue of protecting privacy as it \nrelates to court records for the past few years. We are taking a \nproactive stance in protecting the privacy of individuals and their \nsocial security numbers, while at the same time maintaining traditional \nopen court access. Today, we will share examples of what state courts \nthat are doing on this via the approval of court rules.\n    In collaboration with the Conference of Chief Justices (CCJ), we \nestablished a project entitled ``Public Access to Court Records: CCJ/\nCOSCA Guidelines for Policy Development by State Courts,\'\' which \noutlines the issues that a jurisdiction must address in developing its \nown rules, and provides one approach. The Guidelines touch on the use \nof social security numbers (SSNs) in court records as well as other \nprivate information. The entire text of the Guidelines can be found \nonline at http://www.courtaccess.org/modelpolicy/\n18Oct2002FinalReport.pdf. Both CCJ and COSCA, adopted a resolution \nendorsing the Guidelines and urged the states to address them.\n    Mr. Chairman, SSNs are pervasive in state court documents and \nprocedures. The testimony that follows gives the subcommittee numerous \nexamples of how we use SSNs in day-to-day court proceedings. For \nexample, we use SSNs to insure that judges have the best evidence \navailable to them. We also use SSNs to collect fines and restitution. \nIn addition, many SSNs appear in the public record in many types of \ncourt cases including, but not limited to, bankruptcy, divorce and \nchild support cases. My testimony also details the federal requirements \nimposed on us to collect SSNs for various reasons, for example, to \ntrack parents who are not paying child support.\n    Mr. Chairman, we stand ready to work with you to craft solutions to \naddress the problem of identity theft. We want to do our part to \neliminate it. We are at the same time concerned about the effort to \nrequire us to redact or expunge SSNs that appear in public records. We \nfeel that this type of requirement would impose an unfunded mandate on \nstate courts in this country. The cost to fulfill this requirement \nwould be high because many SSNs appear in paper documents as well as \nother hard-to-redact microfilm/microfiche.\nABOUT COSCA\n    Before I begin my remarks, I would like to provide some background \non our group and our membership. I submit this testimony on behalf of \nthe Conference of State Court Administrators (COSCA). I am a former \nmember of COSCA having served as State Court Administrator of the state \nof Washington. The National Center for State Courts, of which I am \nPresident, serves as secretariat to COSCA. COSCA was organized in 1955 \nand is dedicated to the improvement of state court systems. Its \nmembership consists of the principal court administrative officer in \neach of the fifty states, the District of Columbia, the Commonwealth of \nPuerto Rico, the Commonwealth of the Northern Mariana Islands, and the \nTerritories of American Samoa, Guam, and the Virgin Islands. A state \ncourt administrator implements policy and programs for a statewide \njudicial system. COSCA is a nonprofit corporation endeavoring to \nincrease the efficiency and fairness of the nation\'s state court \nsystems. As you know, state courts handle 98% of all judicial \nproceedings in the country. The purposes of COSCA are:\n\n    <bullet>  To encourage the formulation of fundamental policies, \nprinciples, and standards for state court administration;\n    <bullet>  To facilitate cooperation, consultation, and exchange of \ninformation by and among national, state, and local offices and \norganizations directly concerned with court administration;\n    <bullet>  To foster the utilization of the principles and \ntechniques of modern management in the field of judicial \nadministration; and\n    <bullet>  To improve administrative practices and procedures and to \nincrease the efficiency and effectiveness of all courts.\n\n    Although I do not speak for them today, I also would like to tell \nyou about the Conference of Chief Justices (CCJ), a national \norganization that represents the top judicial officers of the 58 \nstates, commonwealths, and U.S. territories. Founded in 1949, CCJ is \nthe primary voice for state courts before the federal legislative and \nexecutive branches and works to promote current legal reforms and \nimprovements in state court administration. COSCA works very closely \nwith CCJ on policy development and administration of justice issues.\nSTATE COURTS ARE RESPONDING TO PRIVACY CONCERNS\n    Mr. Chairman, let me begin by informing you of the progress that \nmany state courts are making to protect individual privacy rights, \nwhile maintaining the American tradition of open courts. Through court \nrules, state court systems are changing their procedures for viewing \nand accessing court records as they relate to the appearance of social \nsecurity numbers. Washington State, for example, is establishing a \nprocedure for ``sealing\'\' family case court records containing \nprivileged information such as social security numbers and financial \ninformation. In effect, Washington is creating two sets of records: a \npublic and a private one. Vermont is placing the burden on parties to \nexpunge or redact social security numbers from papers filed with the \ncourt. Minnesota is requiring that parties in a divorce case fill out a \nconfidential information sheet, which contains social security numbers, \nto be kept separate from the official record. South Dakota adopted a \nrule that protects SSNs and financial account number information by \nrequiring these numbers to be redacted from documents and submitted to \nthe Court on confidential information forms. As an example, I am \nattaching the South Dakota rule along with their required confidential \ninformation sheet to the end of my testimony.\n    In addition to the proactive stance we are taking to this issue, we \nare also responding to some of the demands placed on our court systems \nby state legislatures and governors. In 2005, 53 bills were signed into \nlaw by governors dealing with social security number privacy. That\'s 17 \nmore than in 2004; an increase of 46 percent. These bills range from \nsimple prohibition of displays of SSNs on public records to new \nexpansive criminal and civil statutes that punish wrongdoers and those \nthat traffic in social security numbers as a means to steal a person\'s \nidentity. Activity in this area has not diminished in the current year. \nIn the ongoing 2006 sessions, state legislatures are considering 176 \nmeasures dealing with social security numbers and privacy. Again, this \nnumber is an increase over the prior year.\n    At the direction of the CCJ and COSCA leadership, we established a \nspecial subcommittee of the CCJ/COSCA Court Management Committee to \nexplore privacy protection innovations and share them with the Congress \nand the Administration. This committee meets twice a year at our annual \nand mid-year meetings. This subcommittee has been researching the issue \nand is responsible for compiling examples of best practices in this \narea that I am presenting today.\nNATIONAL EFFORT TO CRAFT PUBLIC ACCESS GUIDELINES TO COURT RECORDS\n    Our project entitled, ``Public Access to Court Records: CCJ/COSCA \nGuidelines for Policy Development by State Courts\'\' was a joint effort \nof CCJ/COSCA and the NCSC to give state court systems and local trial \ncourts assistance in establishing policies and procedures that balance \nthe concerns of personal privacy, public access and public safety.\n    The State Justice Institute (SJI) funded this project in 2001 and \nit was staffed by the NCSC and the Justice Management Institute. The \nproject received testimony, guidance and comments from a broad-based \nnational committee that included representatives from courts (judges, \ncourt administrators, and clerks), law enforcement, privacy advocates, \nthe media, and secondary users of court information.\n    The Guidelines recommend the issues that a jurisdiction must \naddress in developing its own rules governing public access. The \nGuidelines are based on the following premises:\n\n    <bullet>  Retention of the traditional policy that court records \nare presumptively open to public access\n    <bullet>  The criteria for access should be the same regardless of \nthe form of the record (paper or electronic), although the manner of \naccess may vary\n    <bullet>  The nature of certain information in some court records \nis such that remote public access to the information in electronic form \nmay be inappropriate, even though public access at the courthouse is \nmaintained\n    <bullet>  The nature of the information in some records is such \nthat all public access to the information should be precluded, unless \nauthorized by a judge\n    <bullet>  Access policies should be clear, consistently applied, \nand not subject to interpretation by individual courts or court \npersonnel\n\n    The Guidelines Committee examined the use of SSNs in current court \npractices. They looked at the inclusion of SSNs in bulk distribution of \ncourt records, and in other private information that courts \ntraditionally protect, such as addresses, phone numbers, photographs, \nmedical records, family law proceedings, and financial account numbers. \nFinally, the Committee examined various federal laws and requirements \ngoverning SSN display and distribution by state and local entities.\n    On August 1, 2002, CCJ and COSCA endorsed and commended ``the \nGuidelines to each state as a starting point and means to assist local \nofficials as they develop policies and procedures for their own \njurisdictions.\'\'\nSTATE COURTS\' INTEREST IN COLLECTING AND USING SOCIAL SECURITY NUMBERS\n    A question we are often asked is why do state courts utilize SSNs? \nWhat is the state court interest in collecting SSNs? Why do state \ncourts need to require parties to provide their SSNs in the course of \nstate court litigation? The following are some of the reasons we use \nthem:\n    Accurate determination of assets/income Judges need the most \naccurate information on assets and income when making their decisions, \nespecially in family law cases. In many instances this involves \nexamining assets by a social security number. There are numerous \nexamples of individuals giving a false social security number to avoid \npaying child support, for example. The same logic applies in dealing \nwith divorce cases in dividing assets.\n    Identification of parties A growing number of court systems are \nusing case management information systems in which an individual\'s \nname, address, and telephone number are entered once, regardless of the \nnumber of cases in which the person is a party. The advantage of these \nsystems is to be able to update an address or telephone number for all \ncases in which the person is a party by a single computer entry. SSNs \nprovide a unique identifier by which court personnel can determine \nwhether the current ``John Smith\'\' is the same person as a previous \n``John Smith\'\' who appeared in an earlier case.\n    Courts have often used SSNs to identify criminal defendants as well \nas parties to civil cases. In the future, persons accused of crime will \nbe identified by automated fingerprint identification systems (AFIS) \nwhich scan fingerprints and classify them electronically. The primary \nfuture need for SSNs as a means to identify individuals will therefore \nbe in civil, not criminal, litigation.\n    Collection of fees, fines and restitution by courts SSNs are the \nuniversal personal identifier for credit references, tax collection, \nand commercial transactions.\n    When courts give a litigant an opportunity to pay an assessment \nresulting from a judgment in periodic payments, the court needs to be \nable to function as a collection agency. Having the convicted person\'s \nsocial security number is necessary for use of state tax intercept \nprograms (in which a debt to the state is deducted from a taxpayer\'s \nstate income tax refund) and other collection activities. Some states \nuse additional means to enforce criminal fines and restitution orders, \nsuch as denial of motor vehicle registration; SSNs are often used for \nthese purposes as well.\n    Creation of jury pools and payment of jurors SSNs are a necessary \npart of the process by which multiple lists (for instance, registered \nvoters and registered drivers) are merged by computer programs to \neliminate duplicate records for individual citizens in the creation of \nmaster source lists from which citizens are selected at random for jury \nduty. Duplicate records double an individual\'s chance of being called \nfor jury duty and reduce the representativeness of jury panels. Some \ncourts use SSNs to pay jurors as well.\n    Making payments to vendors SSNs are used as vendor identification \nnumbers to keep track of individuals providing services to courts and \nto report their income to state and federal taxing authorities.\n    Facilitating the collection of judgments by creditors and \ngovernment agencies Courts are not the only entities that need to \ncollect judgements. Judgment creditors need SSNs to locate a judgment \ndebtor\'s assets and levy upon them. Courts often require that the \njudgment debtor make this information available without requiring \nseparate discovery proceedings that lengthen the collection process and \nincrease its costs. Federal law now requires state courts to place the \nparties\' SSNs in the records relating to divorce decrees, child support \norders, and paternity determinations or acknowledgements in order to \nfacilitate the collection of child support. On October 1, 1999, that \nrequirement was extended to include the SSNs of all children to whom \nsupport is required to be paid.\n    Notification to the Social Security Administration of the names of \nincarcerated and absconded persons The Social Security Administration \ncuts off all payments to persons incarcerated in federal, state or \nlocal prison or jails, and to person who are currently fugitives from \njustice. The savings to the federal budget from this provision are \nsubstantial. To implement this process, Social Security Administration \nneeds to identify persons who have been sentenced to jail or prison and \npersons for whom warrants have been issued. The agency has \ntraditionally obtained this information from state and local \ncorrectional agencies. See 42 USC \x06 402(x)(3) requiring Federal and \nState agencies to provide names and SSNs of confined persons to the \nSocial Security Administration. The state courts of Maryland are \ninvolved in an experimental program to provide such information \ndirectly from court records. The Maryland program has two additional \nfuture advantages for state courts. First, the program offers the \npossibility of obtaining better addresses for many court records; \nsocial security and other welfare agencies have the very best address \nrecords because of beneficiaries\' obvious interest in maintaining their \ncurrency. Second, cutting off benefits may provide a useful incentive \nfor persons receiving benefits to clear up outstanding warrants without \nrequiring the expenditure of law enforcement resources to serve them.\n    Transmitting information to other agencies In addition to the \nSocial Security Administration, many states provide information from \ncourt records to other state agencies. A frequently occurring example \nis the Motor Vehicle Department, to which courts send records of \ntraffic violations for enforcement of administrative driver\'s license \nrevocation processes. These transfers of information often rely upon \nSSNs to ensure that new citations are entered into the correct driver \nrecord.\nPOTENTIAL LEGISLATION\n    Mr. Chairman, in the past, this subcommittee has considered various \npieces of legislation that would, in some form or another, prohibit the \ndisplay of a person\'s social security number on a public record. \nBlanket prohibitions like these will place courts in the position of \ntrying to comply with conflicting public policies. We submit the \nfollowing questions for your consideration:\n    The Welfare Reform Law requires courts to collect SSNs on court \norders granting divorces or child support or determining paternity. \nState laws contain similar requirements in other types of cases in some \nstates. What steps must a court take to restrict access to these \ndocuments, which are matters of public record in most states?\n    SSNs appear in many financial documents, such as tax returns, which \nare required to be filed in court (e.g., for child support \ndeterminations) or are appended to official court documents, such as \nmotions for summary judgments. What steps must a court take to restrict \naccess to these documents, which are also matters of public record in \nmost states?\n    We were encouraged by language in the report accompanying HR 2971 \n(Rept. 108-685, Part 1, p. 21) in the 108th Congress dealing with \nincidental vs. non-incidental appearances of SSNs in public records:\n    During Social Security Subcommittee hearings on the bill, court and \nother public records administrators testified they receive numerous \ndocuments filed by individuals, businesses, and attorneys that often \ninclude SSNs the government did not require to be submitted, and of \nwhich they are therefore unaware. They stated redaction of \n``incidentally\'\' included SSNs would create a serious administrative \nburden, and it would require significant resources to review each \ndocument and redact such incidental SSNs--With respect to SSNs \nsubmitted in court documents absent the court\'s requirement to do so, \nthe individual communicating the SSN in the document, not the court, \nwould be held responsible according to Section 108 of the bill. \n(Emphasis ours)\n    In drafting social security legislation, we respectfully ask that \nyou expand on the above sentiments in actual legislative language of \nany future bill.\n    Courts will have substantial increased labor costs in staff time to \nredact or strike the appearance of SSNs in paper records or in \nmicrofilm/microfiche if a redaction requirement is imposed.\n    In the event you draft legislation dealing with redaction, we urge \nyou to make a distinction between existing court records/documents and \nfuture documents. For example, requiring a court to retroactively \nredact or expunge old records would be a nightmarish task due to the \ncost in staff time and the actual compiling of said court records.\n    Finally, in an effort to make courts and court records more open, \nmany courts are now beginning to make available many public records on \nthe internet either as text/character documents or by scanning and \nplacing them online through imaging software (PDF files). While the \nremoval of SSNS in text/character documents may be relatively easy in \nsome computer generated records (XML), other scanned records, such as \nPDF files, will be harder to change necessitating more staff and an \nincrease in labor costs.\nOUR FUTURE COURSE OF ACTION\n    CCJ and COSCA have recommended that state courts adopt the \nfollowing policies, unless state law directs them otherwise, to protect \ncitizen privacy while providing service to litigants:\n    Official court files State courts should not attempt to expunge or \nredact SSNs that appear in documents that are public records. As was \nmentioned earlier, federal law requires state courts to place the \nparties\' SSNs in the records relating to divorce decrees, child support \norders, and paternity determinations or acknowledgement in order to \nfacilitate the collection of child support. The purpose of placing that \ndata on judgments is not just to provide it to child support \nenforcement agencies; it is also to provide it to the parties \nthemselves for their own private enforcement efforts. Any other \ninterpretation puts the courts in an untenable position--having an \naffirmative obligation to provide judgments in one form to parties and \nchild support enforcement agencies and in another form to all other \npersons.\n    This same reasoning applies to income tax returns or other \ndocuments containing SSNs filed in court. It would be unreasonable, and \nexpensive, to expect courts to search every document filed for the \nexistence of SSNs. Further, court staff has no authority altering \ndocuments filed in a case; the social security number may have \nevidentiary value in the case--at the very least to confirm the \nidentity of the purported income tax filer.\n    Case management information databases Data in automated information \nsystems raises more privacy concerns than information in paper files. \nAutomated data can be gathered quickly and in bulk, can be manipulated \neasily, and can be correlated easily with other personal data in \nelectronic form. Data in an automated database can also be protected \nmore easily from unauthorized access than data in paper files. It is \nfeasible to restrict access to individual fields in a database \naltogether or to limit access to specific persons or to specific \ncategories of persons. Consequently, state courts should take steps to \nrestrict access to SSNs appearing in court databases. They should not \nbe available to public inquirers. Access to them should be restricted \nto court staff and to other specifically authorized persons (such as \nchild support enforcement agencies) for whose use the information has \nbeen gathered.\n    Staff response to queries from the public When court automated \nrecords include SSNs for purposes of identifying parties, court staff \nshould be trained not to provide those numbers to persons who inquire \nat the public counter or by telephone. However, staff may confirm that \nthe party to a case is the person with a particular social security \nnumber when the inquirer already has the social security number and \nprovides it to the court staff member.\n    In short, staff may not read aloud a social security number, but \nmay listen to a social security number and confirm that the party in \nthe court\'s records is the person with that number. This is the same \ndistinction applied to automated data base searches. This distinction \nis one commonly followed in federal and state courts.\nCONCLUSION\n    Mr. Chairman, we recognize the role of SSNs in the incidence of \nidentity theft cases. The current state of affairs with regards to the \ntreatment of SSNs provides lawbreakers the continued opportunity to \nexploit the current system at the expense of ordinary Americans. The \nthreat of identity theft is real and we want to do our part to \neliminate it.\n    I have presented several ways our courts utilize SSNs. Finding \nsolutions to protect an individual\'s privacy will be complex and \ndifficult. Many state courts are already taking steps to fashion \nsolutions in response to the problem. I remind you of the earlier \nmentioned approaches from Washington, Vermont, Minnesota and South \nDakota. Other states are experimenting with different approaches.\n    Thank you for asking for our input on this important matter. The \nConference of State Court Administrators stands ready to work \ncollaboratively and cooperatively to craft solutions to this important \nissue. I will be happy to answer any questions you may have.\n                                 ______\n                                 \n    Example of South Dakota court rule to protect SSNs from public \ndissemination\nUNIFIED JUDICIAL SYSTEM\nCOURT RECORDS rule\nSDCL ch. 15-15A\nSDCL 15-15A-1. Purpose of rule of access to court records.\n    The purpose of this rule is to provide a comprehensive policy on \naccess to court records. The rule provides for access in a manner that:\n     (1) Maximizes accessibility to court records,\n     (2) Supports the role of the judiciary,\n     (3) Promotes governmental accountability,\n     (4) Contributes to public safety,\n     (5) Minimizes risk of injury to individuals,\n     (6) Protects individual privacy rights and interests,\n     (7) Protects proprietary business information,\n     (8) Minimizes reluctance to use the court to resolve disputes,\n     (9) Makes most effective use of court and clerk of court staff,\n    (10) Provides excellent customer service, and\n    (11) Does not unduly burden the ongoing business of the judiciary.\n    The rule is intended to provide guidance to 1) litigants, 2) those \nseeking access to court records, and 3) judges, court and clerk of \ncourt personnel responding to requests for access.\nSDCL 15-15A-2. Eho has access to court records under the rule.\n    Every member of the public has the same access to court records as \nprovided in this rule, except as provided otherwise by statute or rule \nand except as provided in \x06 15-15A-7.\n    ``Public\'\' includes:\n    (1) any person and any business or non-profit entity, organization \nor association;\n    (2) any governmental agency for which there is no existing policy, \nstatute or rule defining the agency\'s access to court records;\n    (3) media organizations.\n    ``Public\'\' does not include:\n    (4) court or clerk of court employees;\n    (5) people or entities, private or governmental, who assist the \ncourt in providing court services;\n    (6) public agencies whose access to court records is defined by \nanother statute, rule, order, policy or database access agreement with \nthe South Dakota Unified Judicial System;\n    (7) the parties to a case or their lawyers regarding access to the \ncourt record in their case, which may be defined by statute or rule.\nSDCL 15-15A-3. Definition of terms.\n    (1) ``Court record\'\' includes any document, information, or other \nthing that is collected, received or maintained by a clerk of court in \nconnection with a judicial proceeding. ``Court record\'\' does not \ninclude other records maintained by the public official who also serves \nas clerk of court or information gathered, maintained or stored by a \ngovernmental agency or other entity to which the court has access but \nwhich is not part of the court record as defined in this section.\n    (2) Information in a court record ``in electronic form\'\' includes \ninformation that exists as: (a) electronic representations of text or \ngraphic documents; (b) an electronic image, including a video image, of \na document, exhibit or other thing; or (c) data in the fields or files \nof an electronic database.\n    (3) ``Public access\'\' means that the public may inspect and obtain \na copy of the information in a court record unless otherwise prohibited \nby statute, court rule or a decision by a court of competent \njurisdiction. The public may have access to inspect information in a \ncourt file upon payment of applicable fees.\n    (4) ``Remote access\'\' means the ability to electronically search, \ninspect, or copy information in a court record without the need to \nphysically visit the court facility where the court record is \nmaintained.\nSDCL 15-15A-4. Applicability of rule.\n    This rule applies to all court records, regardless of the physical \nform of the court record, the method of recording the information in \nthe court record or the method of storage of the information in the \ncourt record.\nSDCL 15-15A-5. General access rule.\n    (1) Information in the court record is accessible to the public \nexcept and as prohibited by statute or rule and except as restricted by \n\x06\x06 15-15A-7 through 15-15A-13.\n    (2) There shall be a publicly accessible indication of the \nexistence of information in a court record to which access has been \nrestricted, which indication shall not disclose the nature of the \ninformation protected, i.e., ``sealed document.\'\'\n    (3) An individual circuit or a local court may not adopt a more \nrestrictive access policy or otherwise restrict access beyond that \nprovided by statute or in this rule, nor provide greater access than \nthat provided for by statute or in this rule.\nSDCL 15-15A-6. Court records that are only publicly available at a \n        court facility.\n    A request to limit public access to information in a court record \nto a court facility in the jurisdiction may be made by any party to a \ncase, an individual identified in the court record, or on the court\'s \nown motion. For good cause, the court will limit the manner of public \naccess. In limiting the manner of access, the court will use the least \nrestrictive means that achieves the purposes of this access rule and \nthe needs of the requestor.\nSDCL 15-15A-7. Court records excluded from public access.\n    The following information in a court record is not accessible to \nthe public:\n    (1) Information that is not to be accessible to the public pursuant \nto federal law;\n    (2) Information that is not to be accessible to the public pursuant \nto state law, court rule or case law as follows;\n    (3) Examples of such state laws, court rules, or case law follow. \nNote this may not be a complete listing and the public and court staff \nare directed to consult state law, court rules or case law. Note also \nthat additional documents are listed below that may not be within court \nrecords but are related to the court system; the public and court staff \nshould be aware of access rules relating to these documents.\n    (a) Abortion records (closed); \x06 34-23A-7.1\n    (b) Abuse and neglect files and records (closed, with statutory \nexceptions); \x06 26-8A-13\n    (c) Adoption files and adoption court records (closed, with \nstatutory exceptions); \x06\x06 25-6-15 through 25-6-15.3\n    (d) Affidavit filed in support of search warrant (sealed if so \nordered by court, see statutory directives); \x06 23A-35-4.1\n    (e) Attorney discipline records (closed until formal complaint has \nbeen filed with Supreme Court by the State Bar Association\'s \nDisciplinary Board or Attorney General, accused attorney requests \nmatter be public, or investigation is premised on accused attorney\'s \nconviction of a crime); \x06 16-19-99\n    (f) Civil case filing statements (closed); \x06 15-6-5(h)\n    (g) Coroner\'s inquest (closed until after arrest directed if \ninquisition finds criminal involvement with death); \x06  23-14-12\n    (h) Custody or visitation dispute mediation proceedings pursuant to \n\x06 25-4-60 (closed, inadmissible into evidence)\n    (i) Discovery material (closed unless admitted into evidence by \ncourt) \x06\x06 15-6-26(c); 15-6-5(g)\n    (j) Domestic abuse victim\'s location (closed, with statutory \nexception); \x06 25-10-39\n    (k) Employment examination or performance appraisal records \nmaintained by Bureau of Personnel (closed); \x06 1-27-1\n    (l) Grand jury proceedings (closed with statutory exceptions); \x06  \n23A-5-16\n    (m) Guardianships and conservatorships (closed with statutory \nexceptions); \x06 29A-5-311\n    (n) Involuntary commitment for alcohol and drug abuse (petition, \napplication, report to circuit court and court\'s protective custody \norder sealed; law enforcement or prosecutor may petition the court to \nexamine these documents for limited purpose); \x06 34-20A-70.2\n    (o) Judicial disciplinary proceedings (closed until Judicial \nQualifications Commission files its recommendation to Supreme Court, \naccused judge requests matter be public, or investigation is premised \non accused judge\'s conviction of either a felony crime or one involving \nmoral turpitude); ch. 16-1A, Appx. III(1)\n    (p) Juvenile court records and court proceedings (closed with \nstatutory exception); \x06 26-7A-36 through -38; \x06\x06 26-7A-113 through -116\n    (q) Mental illness court proceedings and court records (closed); \x06\x06 \n27A-12-25; 27A-12-25.1 through -32\n    (r) Pardons (statutory exceptions, see \x06 24-14-11)\n    (s) Presentence investigation reports (closed); \x06\x06  23A-27-5 \nthrough -10; \x06 23A-27-47\n    (t) Probationer under suspended imposition of sentence (record \nsealed upon successful completion of probation conditions and \ndischarge); \x06\x06 23A-27-13.1; 23A-27-17\n    (u) Records prepared or maintained by court services officer \n(closed except by specific order of court); \x06 23A-27-47\n    (v) Trade secrets (closed); \x06 15-6-26(c)(7)\n    (w) Trusts (sealed upon petition with statutory exceptions); \x06 21-\n22-28\n    (x) Voluntary termination of parental rights proceedings and \nrecords (closed except by order of court); \x06 25-5A-20\n    (y) Wills (closed with statutory exceptions); \x06 29A-2-515\n    (z) Written communication between attorney and client; attorney \nwork product (closed unless such privilege is waived); ch. 16-18, Appx. \nRule 1.6\n    (aa) Information filed with the court pending in camera review \n(closed)\n    (bb) Any other record declared to be confidential by law; \x06 1-27-3.\nSDCL 15-15A-8. Confidential numbers and financial documents excluded \n        from public access.\n    The following information in a court record is not accessible to \nthe public.\n    (1) Social security numbers, employer or taxpayer identification \nnumbers, and financial account numbers of a party or party\'s child.\n    (2) Financial documents such as income tax returns, W-2\'s and \nschedules, wage stubs, credit card statements, financial institution \nstatements, credit card account statements, check registers, and other \nfinancial information.\nSDCL 15-15A-9. Filing confidential numbers and financial documents in \n        court records.\n    (1) Social security numbers, employer or taxpayer identification \nnumbers, and financial account numbers of a party or party\'s child, \nwhere required to be filed with the court shall be submitted on a \nseparate Confidential Information Form, appended to these rules, and \nfiled with the pleading or other document required to be filed. The \nConfidential Information Form is not accessible to the public.\n    (2) Financial documents named in \x06 15-15A-8(2) that are required to \nbe filed with the court shall be submitted as a sealed document and \ndesignated as such to the clerk upon filing. The Sealed Financial \nDocuments Information Form appended to these rules shall be attached to \nfinancial documents being filed with the court. The Sealed Financial \nDocuments Information Form is confidential and is not accessible to the \npublic. The sealed financial documents will not be publicly accessible, \neven if admitted as a trial or hearing exhibit, unless the court \npermits access pursuant to \x06 15-15A-10. The court may, on its own \nmotion, seal financial documents that have been submitted without the \nSealed Financial Documents Information Form.\n    (3) Parties with cases filed prior to the effective date of this \nrule, or the court on its own, may, by motion, protect the privacy of \nconfidential information as defined in \x06 15-15A-8. Parties filing this \nmotion will submit a completed Confidential Information Form or Sealed \nFinancial Documents Information Form as appropriate.\nSDCL 15-15A-10. Procedure for requesting access to sealed financial \n        documents.\n    (1) Any person may file a motion, supported by affidavit showing \ngood cause, for access to sealed financial documents. Written notice of \nthe motion shall be required.\n    (2) If the person seeking access cannot locate a party to provide \nthe notice required under this rule, after making good faith reasonable \neffort to provide such notice as required by applicable court rules, an \naffidavit may be filed with the court setting forth the efforts to \nlocate the party and requesting waiver of the notice provisions of this \nrule. The court may waive the notice requirement of this rule if the \ncourt finds that further good faith efforts to locate the party are not \nlikely to be successful.\n    (3) The court shall allow access to sealed financial documents, or \nrelevant portions of the documents, if the court finds that the public \ninterest in granting access or the personal interest of the person \nseeking access outweighs the privacy interests of the parties or \ndependent children. In granting access the court may impose conditions \nnecessary to balance the interests consistent with this rule.\nSDCL 15-15A-11. Requests for bulk distribution of court records.\n    Dissemination of bulk information for resale is prohibited pursuant \nto \x06 1-27-1. Any other bulk dissemination is prohibited except as \nauthorized by the State Court Administrator or the Chief Justice of the \nSupreme Court.\nSDCL 15-15A-12. Access to compiled information from court records.\n    (1) Compiled information is defined as information that is derived \nfrom the selection, aggregation or reformulation by the Supreme Court \nof some of the information from more than one individual court record.\n    (2) Any member of the public may request compiled information that \nconsists solely of information that is publicly accessible and that is \nnot already available in an existing report. The Supreme Court may \ncompile and provide the information if it determines, in its \ndiscretion, that providing the information meets criteria established \nby the Court, that the resources are available to compile the \ninformation and that it is an appropriate use of public resources. The \nState Court Administrator\'s Office will make the initial determination \nas to whether to provide the compiled information.\n    (a) Compiled information that includes information to which public \naccess has been restricted may be requested by any member of the public \nonly for scholarly, journalistic, political, governmental, research, \nevaluation, or statistical purposes.\n    (b) The request shall a) identify what information is sought; b) \ndescribe the purpose for requesting the information and explain how the \ninformation will benefit the public interest or public education, and \nc) explain provisions for the secure protection of any information \nrequested to which public access is restricted or prohibited.\n    (c) The Supreme Court may grant the request and compile the \ninformation if it determines that doing so meets criteria established \nby the Court, is consistent with the purposes of the access rules, that \nthe resources are available to compile the information, and that it is \nan appropriate use of public resources.\n    (d) If the request is granted, the Supreme Court may require the \nrequestor to sign a declaration that:\n    (i) The data will not be sold or otherwise distributed directly or \nindirectly, to third parties, except for journalistic purposes;\n    (ii) The information will not be used directly or indirectly to \nsell a product or service to an individual or the general public, \nexcept for journalistic purposes; and\n    (iii) There will be no copying or duplication of information or \ndata provided other than for the stated scholarly, journalistic, \npolitical, governmental, research, evaluation, or statistical purpose.\n    The Supreme Court may make such additional orders as may be needed \nto protect information to which access has been restricted or \nprohibited.\nSDCL 15-15A-13. Requests to prohibit public access to information in \n        court records.\n    A request to prohibit public access to information in a court \nrecord may be made by any party to a case, the individual about whom \ninformation is present in the court record, or on the court\'s own \nmotion. Notice of the request must be provided to all parties in the \ncase and the court may order notice be provided to others with an \ninterest in the matter. The court shall hear any objections from other \ninterested parties to the request to prohibit public access to \ninformation in the court record. The court must decide whether there \nare sufficient grounds to prohibit access according to applicable \nconstitutional, statutory and common law. In deciding this the court \nshould consider the purpose of this rule as set forth in \x06 15-15A-1. In \nrestricting access, the court will use the least restrictive means that \nwill achieve the purposes of this access rule and the needs of the \nrequestor.\nSDCL 15-15A-14. When court records may be accessed.\n    (1) Court records will be available where available for public \naccess in the courthouse during hours established by the court. Court \nrecords in electronic form to which the court allows remote access \nunder this rule will be available for access at least during the hours \nestablished by the court for courthouse access, subject to unexpected \ntechnical failures or normal system maintenance announced in advance.\n    (2) Upon receiving a request for access to information the court \nwill respond within a reasonable time regarding the availability of the \ninformation and provide the information within a reasonable time.\nSDCL 15-15A-15. Fees for accessing court records.\n    The Supreme Court may charge a fee for access to and copies of \ncourt records in electronic form, for remote access or compiled \ninformation. The fee shall be reasonable and may include costs for \nlabor, materials and supplies. Fees for record searches are set forth \nin \x06 16-2-29.5. Some entities, and other entities under certain \nconditions, are exempt from paying a record search fee pursuant to \x06 \n16-2-29. Copying and certification fees shall be charged as determined \nby statute or Supreme Court Rule.\n\nCONFIDENTIAL INFORMATION FORM (Required by SDCL 15-15A-9)\n\n_________________________      Case No. ________\n\nPlaintiff / Petitioner\n_________________________\n\nDefendant / Respondent\n\n    The information on this form is confidential and shall not be \nplaced in a publicly accessible portion of a court record.\n\nNAME ____________________________________\n\nSOCIAL SECURITY NUMBER  ________________________\n\nEMPLOYER IDENTIFICATION NUMBER ___________________\n\nTAXPAYER IDENTIFICATION NUMBER ___________________\n\nFINANCIAL ACCOUNT NUMBERS:\n                                                 ______________________\n\nPlaintiff / Petitioner\n                                         ______________________________\n\n                                         ______________________________\n\n1.  ____________   ____________   ____________\n\n2.  ____________   ____________   ____________\n\n3.  ____________   ____________   ____________\n\nDefendant / Respondent\n                                            ___________________________\n\n                                            ___________________________\n\n1.  ____________   ____________   ____________\n\n2.  ____________   ____________   ____________\n\n3.  ____________   ____________   ____________\n\nOther Parties (including minor children)\n                                                    ___________________\n\n                                                    ___________________\n\n1.  ____________   ____________   ____________\n  \n2.  ____________   ____________   ____________\n\n3.  ____________   ____________   ____________\n\n4.  ____________   ____________   ____________\n\nInformation supplied by:\n                                            ___________________________\n\nSigned:\n                                   ____________________________________\n\nFirm:\n                                   ____________________________________\n\nAddress:\n                                    ___________________________________\n\n                               ________________________________________\n\nDate:\n                                  _____________________________________\n\nSEALED FINANCIAL DOCUMENTS INFORMATION FORM (Required by SDCL 15-15a-9)\n\n_________________________      Case No. ________\n\nPlaintiff / Petitioner\n\n_________________________\n\nDefendant / Respondent\n\nThe information on this form is confidential and shall not be placed in \na publicly accessible portion of a court record.\n\n      __________ Income Tax Records\n\n                           Period Covered:\n\n      __________ Financial Account Statements\n\n                           Period Covered:\n\n      __________ Wage Stubs\n\n                           Period Covered:\n\n      __________ Credit Card Account Statements\n\n                           Period Covered:\n\n      __________ Other\n\nInformation supplied by:\n                                            ___________________________\nSigned:\n                                   ____________________________________\n\nFirm:\n                                   ____________________________________\n\nAddress:\n                                    ___________________________________\n\n                               ________________________________________\n\nDate:\n                                  _____________________________________\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Thank you, Ms. McQueen. Mr. Stein?\n\nSTATEMENT OF ERIK STEIN, EXECUTIVE VICE PRESIDENT AND DIRECTOR, \n FRAUD RISK MANAGEMENT, COUNTRYWIDE FINANCIAL CORPORATION, ON \n       BEHALF OF BITS FRAUD REDUCTION STEERING COMMITTEE\n\n    Mr. STEIN. Thank you. Good afternoon, Chairman McCrery and \nMembers of the Subcommittee. My name is Erik Stein. I am \nExecutive Vice President and Director of Fraud Risk Management \nat Countrywide, America\'s largest residential mortgage lender \nand servicer, currently responsible for preventing, detecting, \ninvestigating, mitigating, and reporting on criminal conduct \nby, through, or within Countrywide Financial Corporation and \nits member family of companies.\n    I am pleased to appear before you today on behalf of BITS \nand the Financial Services Roundtable to discuss the role of \nSSNs in identity theft and SSN privacy. I have submitted a more \ndetailed written statement for the record, but would like to \nhighlight five key points in my oral statement.\n    First, SSNs have evolved, regardless of their original \nintent, to become the de facto unique identifier that today \naccompanies most consumers from cradle to grave. SSNs provide \nthe link to associate consumers to their financial accounts, \ncredit reports, public records, and a host of other critical \nrelationships. SSNs are essential to financial institutions to \nmeet various statutory obligations, such as knowing their \ncustomers, report tax-related activity, conduct financial \ncrimes investigations, screen prospective employees, and more. \nAll of these functions help keep our customers and their \nfinancial assets safe and ensure the security and reliability \nof the economy.\n    Second, SSNs play a pivotal role in the accurate \ndetermination of an individual. With millions of citizens in \nAmerica, the SSN is the single unique identifier common to them \nall. However, it is important to note that the verification of \nthe SSN is not the same as the verification of identity. \nVerification of identity is accomplished through the use of \nother government-issued documentation, including drivers\' \nlicenses and passports, which financial institutions require to \nopen accounts and make loans. However, financial institutions \nhave not been afforded the tools to ensure the validity of SSNs \nand these other documents presented for identity verification \neven though the institutions are required by the USA PATRIOT \nAct (P.L. 107-56) to know their customers.\n    That brings me to my third point, which is the proposed \nconsent-based SSN verification, or CBSV program recently \nestablished by the SSA, is a critical first step in \nfacilitating identity verification. The program allows \nverification of the SSN along with the corresponding name and \ndate of birth provided by consumers to SSA\'s database. I and \nother fraud reduction professionals strongly encourage the \nSubcommittee to actively support the CBSV program and we urge \nthe SSA to remove restrictions on the daily submission volume \nby participants, work to improve the proposed response times, \neliminate the requirements for a stand-alone consumer \nauthorization, allowing the authorization to be incorporated \ninto loan or account documents, and review the cost structure. \nThese changes would allow participants to consistently use CBSV \non every new relationship, reducing fraud, identifying errors, \nand lowering costs.\n    Fourth, criminals know the intrinsic value of SSNs in \ncommitting identity theft and other crimes. The sad reality is \nthat criminals in search of identities with which to commit \nidentity theft can readily obtain them through many means. For \nexample, all a criminal need do is steal mail in January, when \nmillions of 1099s and 1098s are distributed to taxpayers. These \nforms are required by statute to display the SSN and for \nmailing purposes must have the recipients\' name and address. We \nrecommend that Congress review statutory obligations that \nrequire the printing of SSNs on any documents to determine if \nthe risk of compromise exceeds the value derived, and if so, \nenact changes to remove these obligations.\n    My final point is that we should be mindful of the \nunintended consequences that could result from restricting the \nuse of SSNs among legitimate businesses. Decreasing financial \ninstitutions\' abilities to use SSNs could potentially lead to \nincreased fraud, increased lending costs, decreased loan \napproval rates, and a myriad of other unforeseen results. It is \nimportant for Congress, the SSA, and other agencies to \nthoroughly consider the potential consequences and adverse \nimpact such restrictions could have on commerce.\n    In closing, it is important to note that through BITS, the \nfinancial services industry has been aggressive in efforts to \nmitigate identity theft, reduce fraud, and strengthen cyber \nsecurity by working together to share information, analyze \nthreats, and implement best practices. We need essential tools \nsuch as the CBSV program to continue these efforts.\n    Thank you for the opportunity to testify before you today. \nI would be happy to answer any questions.\n    [The prepared statement of Mr. Stein follows:]\n    Statement of Erik Stein, Member, BITS Fraud Reduction Steering \n                               Committee\nIntroduction\n    Good afternoon Chairman McCrery and members of the Subcommittee. My \nname is Erik Stein. I am Executive Vice President and Director of Fraud \nRisk Management at Countrywide Financial Corporation, America\'s largest \nresidential mortgage lender and servicer. I have over 25 years of \nbanking, credit card, mortgage lending and dot com experience and am \ncurrently responsible for preventing, detecting, investigating, \nmitigating and reporting on criminal conduct by, through or within \nCountrywide and its family of companies.\n    I am pleased to appear before you today on behalf of BITS and its \nFraud Reduction Steering Committee (FRSC) to discuss the role of Social \nSecurity Numbers (SSNs) in identity theft and enhancing SSN privacy.\n    BITS is a nonprofit industry consortium of 100 of the largest \nfinancial institutions in the U.S. BITS is the non-lobbying division of \nThe Financial Services Roundtable. BITS\' mission is to serve the \nfinancial services industry\'s needs at the interface between commerce, \ntechnology and financial services. BITS\' member companies provide fuel \nfor America\'s economic engine, accounting directly for $40.7 trillion \nin managed assets, $960 billion in revenue, and 2.3 million jobs. BITS \nworks as a strategic brain trust to provide intellectual capital and \naddress emerging issues where financial services, technology and \ncommerce intersect. BITS focuses onkey issues where industry \ncooperation serves the public good, such as critical infrastructure \nprotection, fraud prevention, and the safety of financial services. \nBITS\' activities are driven by the CEOs and their direct reports--CIOs, \nCTOs, Vice Chairmen and Executive Vice President-level executives of \nthe businesses.\n    Especially relevant to today\'s testimony, the mission of the BITS \nFraud Reduction Steering Committee (FRSC) is to identify fraudulent \ntrend activity, reduce fraud losses, and foster new opportunities to \nreduce the impact of fraud on the financial services industry and our \ncustomers. Participants in the BITS Fraud Reduction Steering Committee \ninclude representatives from financial institutions, industry \nassociations and the Federal Reserve.\n    BITS works with government organizations including the U.S. \nDepartment of Homeland Security, U.S. Department of the Treasury, \nfederal financial regulators, Federal Reserve, technology associations, \nand major third-party service providers to achieve its mission.\n    BITS is also a founding and active member of the Financial Services \nSector Coordinating Council for Critical Infrastructure Protection and \nHomeland Security (FSSCC). The mission of the FSSCC is to:\n\n    <bullet>  Foster and facilitate the coordination of financial \nservices sector-wide voluntary activities and initiatives designed to \nimprove Critical Infrastructure Protection and Homeland Security\n    <bullet>  Identify voluntary efforts where improvements in \ncoordination can foster sector preparedness\n    <bullet>  Identify barriers and recommend initiatives to improve \nsector-wide knowledge sharing and timely dissemination of critical \ninformation among all sector constituents\n    <bullet>  Promote public trust and confidence in the financial \nservices sector\'s ability to withstand and recover from terrorist \nattacks, cybercrime, and natural disasters.\n\n    The financial services industry has been aggressive in its efforts \nto strengthen cyber security, reduce fraud, and mitigate identity \ntheft. Members of BITS are sharing information, analyzing threats, \ncreating best practices, urging the software and technology industries \nto do more to provide more secure products and services, and combating \nfraud and ID theft. As just one example of these efforts, the Identity \nTheft Assistance Center (ITAC), which BITS and the Financial Services \nRoundtable established in 2004, recently announced that it had helped \nover 5,000 individuals in restoring their financial identity.\nSSNs: A Unique Identifier\n    SSNs have evolved, regardless of original intent, to become the de \nfacto unique identifier for consumers. This number is the only unique \nidentifier that today accompanies most consumers from cradle to grave. \nSSNs remain a constant in an ever-changing world of name change from \nmarriage and divorce, shifting addresses, and driver\'s license re-\nissuance as consumers move from one state to another. SSNs are used in \nefforts to ensure the accurate association of financial accounts, \ncredit reports, public records, medical records and a host of other \ncritical relationships and services to a consumer.\nCritical Role of SSNs for Financial Institutions\n    The use of SSNs by financial institutions is essential to satisfy a \nvariety of statutory obligations such as to report earned interest \nincome and deductible interest payments on mortgages for millions of \nAmerican consumers. In addition, SSNs facilitate practical realities \nsuch as accessing credit reports to determine creditworthiness, \nperforming due diligence on business partners and correspondent banks \nand, as required by the USA Patriot Act, performing enhanced due \ndiligence on politically-exposed persons (PEP).\\1\\\n---------------------------------------------------------------------------\n    \\1\\ The Federal Financial Institutions Examination Council\'s \n(FFIEC) Bank Secrecy Act Anti-Money Laundering Examination Manual \ndefines a PEP as ``a person identified in the course of normal account \nopening, maintenance or compliance procedures to be a `senior foreign \npolitical figure,\' any member of a senior foreign political figure\'s \n`immediate family,\' and any `close associate\' of a senior foreign \npolitical figure.\'\'\n---------------------------------------------------------------------------\n    Under the USA Patriot Act, financial institutions are obligated to \n``know their customer,\'\' and to take steps to verify the identity of \naccount holders. In addition, financial institutions perform due \ndiligence on business partners and vendors. One of the integral parts \nof compliance with these obligations often involves the use of public \nrecords which are searched by use of the SSN, or, in the case of \nbusiness, EIN, to ensure that the results returned are unique to the \nsubject of the due diligence.\n    After the customer\'s identity has been verified and the \nrelationship has been established, many financial institutions utilize \nthe SSN internally to track the customer\'s relationship with the \nfinancial institution across multiple accounts and for a variety of \nlegitimate internal business reasons. This legitimate, internal \nbusiness use should remain exempt from additional limitations.\n    Criminal investigations initiated by financial institutions are \nfacilitated by the availability of SSNs both in the financial \ninstitution\'s database and in public records. Public records are \nfrequently used by financial institutions\' staff during the \ninvestigation of potential criminal conduct. During the investigation, \nthe SSN is the single most reliable method of identification, \ncorrelation and association of the perpetrators to their public \nrecords, which often provide critical details imperative to solving the \ncrime and locating the suspect(s). The loss of this valuable tool would \njeopardize the effective investigation of financial crimes.\n    Financial institutions and other businesses routinely screen \nprospective employees to verify identity, validate applicant employment \nand education history, and check for criminal conduct prior to \nextending job offers. These background checks, particularly in high-\nrisk occupations or vulnerable industries, can reduce the incidence of \ncriminal infiltration, potential workplace violence and security risks, \nincluding customer data security and privacy risks. The SSN is critical \nin verifying a potential employee\'s background and allows for the \nongoing monitoring of employees in high-risk positions. Without the use \nof a SSN, financial institutions would find it very difficult to adhere \nto a ``know your employee\'\' standard.\nSSN Verification: A Key Tool for Successful Identity Determination of \n        Customers\n    SSNs play a pivotal role in identity determination: the \nestablishment and verification of the identity of unique persons with \nwhom financial institutions, and others, conduct business. With \nmillions of John Smiths in America, the identity determinate of which \nJohn Smith with whom a financial institution is dealing is made by the \nsingle unique identifier common to all Americans, his SSN.\n    Importantly, financial institutions realize that the ability to \nsuccessfully verify John\'s SSN is not the same as successfully \ndetermining his identity. A financial institution must do this through \nthe use of identification documents such as driver\'s license, passport \nand other, typically government-issued, identity documents containing a \npicture, signature, expiration date, security features, a physical \ndescription, etc. It should be noted that SSNs have not been used for \nidentity verification due to the lack of a highly secure SSN card, \ntamper-proof signature, picture and expiration. The SSN card contains \nfew security features making it easy to counterfeit and reducing or \neliminating any value in its use for identity verification. The SSN is \nthus only a tool, albeit an invaluable one, in the process of \ndetermining the identity of an individual. It is clear, however, that \nverification is a key tool for achieving positive identity \ndetermination.\nValue of the SSN to Criminals\n    The critical role of SSNs is the fundamental reason for their \nintrinsic value to criminals\' intent on committing crimes. Criminals \nutilize SSNs in the commission of identity theft. Identity Theft may be \ndivided into ``true name\'\' fraud where the perpetrator uses the \n``true\'\' identity of a consumer, or identity fraud where combinations \nof consumer\'s identities are pieced together or even fabricated to \ncreate a synthetic identity, a new person.\n    It is important to recognize that criminals committing identity \nfraud don\'t need to steal or purchase SSNs to commit their crime. The \nstructure of the SSN is common knowledge to anyone who has ever had, or \nseen, one or checked the Social Security Administration\'s (SSA) website \n(i.e. http://policy.ssa.gov/poms.nsf/lnx/0100201030?opendocument.) \nValid SSNs can be determined by checking the SSA\'s website for the \nhighest group issuance http://www.socialsecurity.gov/employer/\nhighgroup.txt. By selecting a recently issued SSN, and applying for \ncredit, a criminal creates an identity with the Credit Reporting \nBureaus (for which there will be no conflicting SSN information since \nthe valid SSN holder is an infant).\n    Since financial institutions and lenders don\'t have the ability to \nverify the SSN, name and date of birth combinations (other than the \ncurrent Enumeration Verification System pilot in the mortgage industry \nwhich is not a robust, enterprise-strength, low cost, timely \nverification process and therefore narrowly used), the identity thief \nis unlikely to be caught. Restrictions on the sale and purchase of SSNs \nwould do little to prevent this type of fraud. The fraud also doesn\'t \nrely on the theft of SSNs from their legitimate owner.\n    BITS members would encourage the Subcommittee to remove the highest \ngroup issuance list from the public domain and make it available to \nfinancial institutions and others with a legitimate business need on a \nsubscription basis as is currently done with SSA\'s Death Master File. \nWhile this list is an essential tool today to validate SSNs provided to \nfinancial institutions, its potential use by criminals is inconsistent \nwith its availability to the general public.\n    Another area of risk is that criminals in search of identities for \ncommitting true name fraud can readily obtain name, address, SSN and \naccount number combinations by mail theft during January each year when \nmillions of account holders and borrowers receive their 1099\'s or 1098. \nBy statute, these tax forms are required to display the account \nholder\'s SSN, and, for mailing purposes, must have the recipient\'s name \nand address along with the account number to identify the account for \nwhich the form has been filed. These forms are mailed en masse by \nfinancial institutions at the beginning of the year for use in \nrequisite income tax filing by the consumer thereby making for a \ntarget-rich environment for obtaining identities through mail theft.\nCombating Identity Theft through SSN Verification\n    For decades, financial institutions have required SSNs and identity \ndocuments to open accounts, make loans and accept transactions by their \ncustomers. However, the industry has been relegated to validation \nmethods that do not, and cannot, validate the existence of, and their \nassociation with, a consumer\'s personal identifiers (such as name, date \nof birth and gender). For SSNs, financial institutions have relied on \nrules that determine if the SSN had been issued (the highest group \nissuance list referenced above available from SSA), that the SSN holder \nhad not been reported deceased (SSA\'s Death Master File), and that the \nholder was not born after the issuance of the SSN by SSA (from \nhistorical highest group issuance lists). The single most important \nvalidation has been unavailable, that the consumer presenting the \nnumber is the holder of record in SSA\'s database.\n    The proposed Consent-Based SSN Verification (CBSV) program recently \npublished for public comment by the SSA is an extension of the \nEnumeration Verification System pilot and is a critical effort to allow \nfinancial institutions to verify SSNs. It will allow financial \ninstitutions to verify the SSN holder\'s name and date of birth against \nSSA\'s database. Establishing a system capable of high volume, low cost, \nreal time verification direct to financial institutions and lenders \nwould significantly reduce the incidence of synthetic identities. \n``True name\'\' identity theft would become more difficult with the \nvalidation of date of birth and the optional gender code by financial \ninstitutions utilizing a CBSV program.\n    BITS\' members strongly encourage the Subcommittee to support the \nCBSV program.\\2\\ We also request that the SSA evaluate the removal of \nrestrictions on the daily volume of submissions by participants, work \ntowards improving the proposed response times, eliminate requirements \nfor a standalone consumer authorization allowing incorporation of the \nauthorization into loan or account documents, and review the cost \nstructure.\n---------------------------------------------------------------------------\n    \\2\\ Attached is the BITS/Financial Services Roundtable Comment \nLetter on the Social Security Administration\'s Consent-Based Social \nSecurity Verification Process (February 2006)\n---------------------------------------------------------------------------\n    Consumers would benefit from industry\'s ability to verify SSN \ninformation by reducing the incidence of fraud and errors. Erroneous \ndata entry of consumer\'s SSNs would also be easily determined, reducing \nthe incidence of erroneous tax reporting on interest earned and \ndeductible interest expense and reducing the quantity of consumers \nrequired to be subjected to annual solicitation for a corrected SSN due \nto mismatches submitted to the IRS and misrepresentation.\n    Further, the BITS members, due to the high perceived value of CBSV, \nwould also encourage the consideration of federal legislation to \nmandate similar programs related to other governmental identity \ndocuments used in the financial industry to verify consumers including \nU.S. passports, alien registration documents (e.g. Non-Resident Alien \ncard) and state driver\'s licenses. Financial institutions, while under \nobligations to know their customer under the USA Patriot Act, have not \nbeen afforded the tools to ensure the validity of the documents \npresented for identity verification. We have had to rely exclusively on \nthe appearance of legitimacy (e.g. verification of security features, \nvisual inspections or tests that validate the structure of a driver\'s \nlicense number but, again, not the name of the true license holder).\nUnintended Consequences for Limiting Use of SSNs\n    The critical roles of SSNs for use in financial institutions, \ninvestigations, public records, lending, account servicing, tax \nreporting and much more makes the availability and use of the SSN for \nlegitimate business uses an imperative. It is important that additional \nproposed restrictions on the use, sale and purchase of SSNs be \nthoroughly evaluated to ensure that unintended consequences do not \noccur. This could include potential increases in fraud; economic \nimpacts from increased lending costs; and decreased loan approval rates \nand other adverse implications to commerce.\nConclusion and Recommendations\n    In summary, the use of SSNs is critically important to the \nfinancial services industry. They allow financial institutions to meet \nvarious statutory obligations such as knowing who their customers, \nemployees, and business associates are; reporting earned interest \nincome and deductible interest payments on mortgages; and satisfying \ndue diligence expectations as set forth by statutory obligations. All \nof these functions are performed to keep our customers and their \nfinancial assets safe, and to ensure the security and reliability of \nthe economy.\n    On behalf of BITS and our member financial institutions, we \nencourage Congress to:\n\n    <bullet>  Continue to allow financial institutions to use SSNs \nwithout additional restrictions and limitations;\n    <bullet>  Exercise caution if changes are considered, to be \nespecially alert to unintended consequences such as increased fraud;\n    <bullet>  Support a verification program capable of high volume, \nlow cost, real time verification in a manner consistent with customers\' \ndemands; and\n    <bullet>  Review statutory obligations that require the printing of \nSSN\'s (e.g. 1098, 1099) to determine if the risk of compromise exceeds \nthe value derived and, if so, enact changes to remove these \nobligations.\n\n    Thank you for the opportunity to testify before you today. I would \nbe happy to answer any questions.\n                                 ______\n                                 \nFebruary 26, 2006\nOffice of Management and Budget (OMB)\nAttn: Desk Officer for SSA\nFax: 202-395-6974\nSocial Security Administration, DCFAM,\nAttn: Reports Clearance Officer\nFax: 410-965-6400\nE-mail: <a href="/cdn-cgi/l/email-protection" class="__cf_email__" data-cfemail="0946594544275b4a46497a7a68276e667f">[email&#160;protected]</a>\nRe: Comment to Consent Based Social Security Number Verification (CBSV) \nProcess\n\nDear Sirs and Madams:\n\n    BITS and The Financial Services Roundtable appreciate the \nopportunity to participate in the Social Security Administration\'s \n(SSA) request for comment regarding the Consent Based Social Security \nNumber Verification (CBSV) Process.\n    BITS and The Financial Services Roundtable share membership and \nrepresent 100 of the largest integrated financial services companies \nproviding banking, insurance, and investment products and services to \nthe American consumer. Member companies participate through the Chief \nExecutive Officer and other senior executives nominated by the CEO. \nBITS works to leverage the intellectual capital of its members, \nfostering collaboration to address emerging issues where financial \nservices, technology, and commerce intersect. The Roundtable promotes \nthe interests of member companies in legislative, regulatory and \njudicial forums. Roundtable member companies provide fuel for America\'s \neconomic engine, accounting directly for $40.7 trillion in managed \nassets, $960 billion in revenue, and 2.3 million jobs.\n    Our members have always been a favorite target for perpetrators of \nfraud. Institutions have long answered this challenge with reliable \nbusiness controls, advanced technology, information sharing, and \ncooperative efforts with government and law enforcement agencies. While \nour members\' foremost concern is to protect their customers and \nmaintain their trust, they are also mindful of the need to comply with \nthe regulations set forth by Section 326 of the Patriot Act. This \nsection requires institutions to verify not only the identity of a \ncustomer, but also the accuracy of the information provided.\n    In the interest of reducing fraud and complying with Section 326 of \nthe Patriot Act, BITS members supported the initial pilot, the \nEnumeration Verification System (EVS), to allow institutions to \naffirmatively verify consumer\'s name, social security number and date \nof birth (DOB). This pilot provided a means to ensure accounts were \nopened for the legitimate consumer and not a ``fraudster\'\' and we \napplaud the SSA\'s efforts to provide enhancements in the form of the \nCBSV that would benefit our customers and our industry.\n    After careful review of the information collection process outlined \nin the December 30, 2005 Federal Register, we respectfully offer the \nfollowing comments:\n``Valid Consent from Number Holders\'\'\n    There is concern that, since the CBSV is designed to verify a \nperson\'s Social Security Number (SSN) to their name (and potentially \nDOB), there may be instances where financial institutions are misled \nand the consent is not from the true applicant as may be the case in \nidentity theft or identity manipulation. There should be \nacknowledgement that while financial institutions have established a \nprocess for verification, there is still an opportunity for applicants \nto provide false information. This verification process is fundamental \nto ensuring the name, SSN, and DOB (optionally) match the authorizing \nconsumer. While we understand the use of ``valid consent from number \nholders,\'\' we want to ensure that there are no consequential impacts to \nfinancial institutions from the fraudulent completion of consent \nauthorizations.\nInclusion of Gender Code\n    The public comment details the submission as consisting of a name, \nSSN and DOB (if available) and the results provide a match to name, \nSSN, date of birth and gender code (which is not part of the \nsubmission). Clarity needs to be provided on whether gender code is \nintended to be a submitted/verified field.\nFull Name Matching\n    While SSN, DOB (and possibly gender assuming it is used) are unique \nvariables, one\'s name is subject to wide variation. It is suggested \nthat the full first and full last be used for matching and that a \nsecondary field be available for each that could include a nickname, \nshortened name (Jim vs. James) and last name. The use of a secondary \nfield for name matching would reduce the incidence of re-running \nqueries; improve match rates including where Soundex matching is \nutilized and the name variation is not conducive to such matching \nlogic; and would accommodate name changes due to marriage, divorce, \netc. which may not yet have been reported to SSA.\nReal-time vs. Batch Submissions\n    SSA had indicated its intention to continue the practice of EVS in \nproviding the results of inquiries by Requesting Parties within 48 \nhours while not guaranteeing such response time. Institutions believe \nthere is strong value in having real-time capabilities and encourage \nthe SSA to evaluate methods to provide this verification service in \nreal-time as soon as feasible. If batch submissions remain exclusively \navailable, members strongly encourage SSA to provide a response, to \ninquiries submitted before midnight, by no later than 5am the following \nbusiness morning consistent with other batch jobs run by financial \ninstitutions for fraud detection, verification and posting.\nDaily Limitation of Records and Expectation of Volume\n    While strongly supportive of CBSV, we urge the SSA to reconsider \nthe daily limitation of 5,000 records. One of the inherent values of an \nautomated system of SSN verification is its scalability. With \nscalability in mind, we recommend the SSA remove the daily limitation.\n    Should hardware limitations be reached by the overwhelming success \nand adoption of CBSV, the SSA should charge registered user businesses \nsufficient additional fees to allow the SSA to meet this demand. This \nlinear scalability should also keep the cost per inquiry low. We \nbelieve that SSA\'s expectations of demand for CBSV are substantially \nbelow the industry\'s need for this verification solution. We encourage \nthe SSA to revise its expectations and lower the cost of entry for \nbusiness by reducing the initial fee of $40,288.10. While the basis for \nSSA\'s expectation of only 150 business users for CBSV is not explained \nin the publicly available documents, we believe that, with nearly 9,000 \nFDIC-insured financial institutions alone in the U.S., 5,000 business \nusers is both reasonable and sustainable. This would lower the initial \ncost of entry to $1,208.64. However, to both encourage maximum \nparticipation and guarantee SSA\'s financial support of the program, we \nrecommend the initial fee be set at $10,000.\nDocument Requirements\nSSA-89--Authorization for the Social Security Administration (SSA) To \n        Release Social Security Number (SSN) Verification\n    Evidence of consumer authorization to verify their SSN is clearly \nboth an obligation of the Requesting Party and a necessary privacy \nsafeguard. However, the requirement for a standalone SSA-89 evidencing \nsaid authorization provides no additional safeguard over an obligation \nfor equivalent language, approved by the SSA prior to usage, \nincorporated into account or loan documents. In addition, this document \n(SSA-89) cannot be incorporated into loan documents, account signature \ncards or any other documents. For efficiency and enhancement purposes, \ninstitutions must be able to incorporate the authorization language \ninto existing documents that allows them to run the SSN which can then \nbe retained for six years from the authorization date.\n    The existing retention of these underlying documents already, in \nmost cases, meets or exceeds the SSA minimum retention requirement. \nWhere the existing document retention is shorter than SSA-89\'s \nretention requirement, Requesting Parties will voluntarily comply with \nmodification of their retention schedules to achieve the efficiencies \nafforded by merging these documents with the CBSV authorization. The \nSSA should consider inclusion of specific authorization of the SSN \nowner for electronic signature in accordance with the Electronic \nSignatures in Global and National Commerce Act (ESIGN). SSA\'s existing \nallowance of storage of the SSA-89 electronically would be consistent \nwith the use of ESIGN for electronification of the authorization \nprocess with inherent increased efficiency.\n    SSA-89 cannot be modified by the Requesting Party. The defined term \ncan be modified by agreement as specified in the User Agreement, by \nagreement of the parties executing the Authorization and documented \ntherein. These two statements are mutually exclusive. We recommend SSA \nclearly delineate the method by which Authorization term extension is \nto be documented so the Requesting Party can ensure compliance with \nSSA\'s requirements.\nSSA-88--Pre-Approval Form for CBSV\n    The Requesting Party has a contractual obligation to protect the \nintegrity of SSA\'s systems, utilize information requested only for \nauthorized purposes, and to be authorized by the Requesting Party in \naccordance with their internal approval policies. The need for \ncompletion of form SSA-88 for each employee in a large company that has \naccess to the results of the inquiry is overly burdensome and \ninefficient. We strongly encourage the SSA to make user administration \nfor Requesting Parties an obligation of authorized employees of the \nRequesting Party and managed through a user interface in Business \nServices Online (BSO). All service providers to the financial services \nindustry allow the participant to manage their employees\' access. The \nBSO administrative user interface can be designed so as to require the \ndata elements mandated by SSA (e.g. name, SSN, phone number, and email \naddress of each employee) with appropriate electronic attestation by \nthe authorized admin user during new user setup. Maintenance (e.g. \nchanges to the existing information as a result of job status changes, \nphone or email changes) and deletion (e.g. termination of the employee \nor job status changes no longer requiring access) can likewise be \naccomplished through the BSO administrative user interface by the \nauthorized employee of the Requesting Party. This process is much more \nconducive to large scale employers who may have thousands of employees \nauthorized to access the information from SSA during the processing of \naccounts or loans.\nSSA-1235--Agreement Covering Reimbursable Services\n    SSA-1235 is ``effective upon signature of both parties and shall \nremain in effect until one or more of the following events occur. . . \n.\'\' While the Agreement is continuously in effect (barring one of the \nevents listed), SSA requires an annual resubmission of the Agreement. \nThe resubmission appears inconsistent with an Agreement with no defined \nterm. We recommend the SSA eliminate the annual submission requirement \nfor form SSA-1235. The provision of the annual fee as defined by SSA \neach year should be sufficient evidence of the Requesting Party\'s \nintent to continue the Agreement. The Conditions of Agreement, \nparagraph 6, stipulates that the Authorization ``must be presented \nwithin 60 days after its execution,\'\' however the Authorization itself \nindicates it ``is valid only for 90 days from the date signed. . . .\'\' \nThese statements are incongruous and we recommend the SSA reconcile \nthese documents to a consistent period of 90 days. The Conditions of \nAgreement, paragraph 8, stipulates the Agreement may be terminated ``by \ngiving a 60 day advance written notice.\'\' However, Section XI. Duration \nof Agreement, Suspension of Services, Annual SSA-1235 of the User \nAgreement specifies ``the Agreement shall terminate 30 days after the \ndate of the notice or at a later date specified in the notice.\'\' We \nrecommend the SSA reconcile this discrepancy by establishing a \nconsistent 30 day written notice requirement for termination.\nSubmission of Requests\n    The CBSV User Guide establishes the file format for submission of \nrequests by the Requesting Party to SSA. The file format contains a \nfield for a ``Multiple Request Sequence Number\'\'; however, the SSA \nlimits the number of file submissions by a Requesting Party to one. \nSince only one file can be submitted daily, there would never be a need \nfor this field. If the field is anticipated for future use when \nRequesting Parties may be allowed multiple daily file submissions, we \nsuggest ``Future Use\'\' indicated in the description for this field to \nremove ambiguity.\n    If you have any further questions or comments on this matter, \nplease do not hesitate to contact us or Heather Wyson at (202) 289-\n4322.\n            Sincerely,\n                                                 Catherine A. Allen\n                                                          CEO, BITS\n\n                                                 Richard M. Whiting\n                             Executive Director and General Counsel\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Thank you, Mr. Stein. Mr. Pratt?\n\n  STATEMENT OF STUART K. PRATT, PRESIDENT AND CHIEF EXECUTIVE \n          OFFICER, CONSUMER DATA INDUSTRY ASSOCIATION\n\n    Mr. PRATT. Mr. Chairman and Members of the Committee, thank \nyou for this opportunity to appear before you today to discuss \nthe importance of SSNs. For the record, my name is Stuart Pratt \nand I am President and CEO of the Consumer Data Industry \nAssociation.\n    We applaud this Committee for the thoughtful and open \ndialog regarding how SSNs are used and to identify risks \nassociated with such use. Before I discuss how our members\' \nsystems make use of the SSN, let us just consider how \ndemographics in our society really explain why the SSN is so \nimportant.\n    First, identifiers in everyday life do change and do so \nmore often than we might think. Over 40 million addresses \nchange every year in this country. More than three million last \nnames change due to marriage and divorce. We use our \nidentifiers inconsistently. We don\'t do so purposefully, but a \nsimple example is our choice to use a nickname in some \ntransactions but to use our full name in others. Our name is \nnot as unique as we might think. There are millions and \nmillions of Smiths and Joneses in this country, and, in fact, \nmore than 13 million consumers have only one of ten very common \nlast names. Another 57 million males have only one of ten \ncommon first names.\n    We provide other examples of how personal information \nchanges in our written testimony, and by taking into account \nall of these facts, it really does become very apparent why the \nSSN is the key to stabilizing consumers\' identifying \ninformation in the context of databases. The SSN is truly a \nunique identifier.\n    Let us discuss how the use of the SSN works within our \nmembers\' systems. Our members design products for \ndeterminations of a consumer\'s eligibility for a product or \nservice, to prevent fraud, and to aid in the location of \nconsumers for a variety of reasons. These products bring great \nvalue to us as consumers every day. Eligibility products, such \nas a credit or employment report, for example, lead to \ndefinitive decisions.\n    These reports are regulated under the Fair Credit Reporting \nAct (P.L. 91-508). The FCRA imposes a duty that consumer \nreporting agencies employ reasonable procedures to ensure the \nmaximum possible accuracy of the information in the report, and \nthe SSN plays a vital role in helping our members to achieve \nthis maximum possible accuracy standard. Absent the use of the \nSSN as a key identifier, consumers would be harmed in many ways \nthrough the exclusion or inclusion of information.\n    Our members also produce products regulated under other \nlaws, such as the Gramm-Leach-Bliley Act. Fraud prevention \nsystems, for example, employ a diversity of strategies. The SSN \nplays an important role. In 2004 alone, businesses conducted \nmore than 2.6 billion searches to check for fraud. The largest \nusers of fraud detection systems are, in fact, financial \nservices companies, accounting for about 78 percent of the \ntransactions, but there were others users. 5.5 million location \nsearches were conducted by child support enforcement agencies, \n378 million searches to enforce contracts to pay, tens of \nmillions of searches were used by pension funds, blood donor \norganizations, and by organizations focused on missing and \nexploited children. The availability and permitted use of the \nSSN remains vital across this entire spectrum of consumer data \nproducts.\n    Consumers and media often assume that the SSN is fully \nunregulated and, of course, this is not the case. As we have \ndiscussed, laws such as the FCRA and the Gramm-Leach-Bliley Act \ndo regulate our members\' products. However, we recognize that \nsimilar protections don\'t exist for all, and the SSN is \nsensitive personal information that must be protected. We \nbelieve that a national uniform system to establish information \nsafeguards should be enacted so that anyone possessing \nsensitive personal information, such as an SSN in combination \nwith my name and address, that they would be obligated to \nprotect that information. There are a number of House and \nSenate committees that are looking at proposals.\n    I think standards like this would cause more American \nbusinesses to move to encrypt such information, which we think \nis the right direction. I think other businesses would decide \nwhether or not they really should be gathering it in the first \nplace. We think that is another good result, as well. Our \nmembers want to protect that information. We think every \ncompany and every business in this country that is going to \ngather that information should do the same.\n    Public records also contain SSNs, and it is encouraging to \nhear the State court organizations discussing strategies to \nprotect them. We support this effort unequivocally. However, \nCDIA does believe that the disclosure of the SSN to the general \npublic, while it must be addressed, we also believe that public \nrecords must be made available, including SSNs, to those with \nappropriate needs. Public records play a vital role in our \nsociety and they bring value to consumer data industry products \nand services. Bankruptcy records, for example, and tax liens as \nwell as judgments are used by lenders. Records of eviction are \ncritical to a landlord, and these are just a few examples.\n    The public sector agencies are taking actions and we are \nencouraged by SSA\'s efforts to explore the viability of a \nsystem by which a party may verify a particular SSN is \nassociated with another. However, the system is cumbersome. It \ndoes not allow for real-time automated processing of SSN \nverification and it will render it very ineffective, in fact, \nin assisting victims of identity theft. We hope the SSA will \nmove toward a more effective system in the future.\n    In conclusion, we believe that enacting law that imposes \nnational uniform information security regulations on all who \npossess the SSN is the right step to take and this is the right \nyear in which to do it. In contrast, laws that overreach and \nattempt to limit the SSN\'s use are likely to merely take fraud \nprevention tools off the table and out of the hands of \nlegitimate businesses and expose--and ultimately at the expense \nof consumers. We believe consumers expect us to protect the \nSSN. We also know consumers expect us to maintain accurate \ndatabases. Thank you, Mr. Chairman.\n    [The prepared statement of Mr. Pratt follows:]\n Statement of Stuart K. Pratt, President and Chief Executive Officer, \n                   Consumer Data Industry Association\n    Chairmen McCrery, Ranking Member Levin and members of the \ncommittee, thank you for this opportunity to appear before you today to \ndiscuss the importance of Social Security Numbers to our members\' \nconsumer data systems. For the record, my name is Stuart Pratt and I am \npresident and CEO of the Consumer Data Industry Association.\\1\\ Our \nmembers applaud this committee for the thoughtful and open dialogue it \nhas sought regarding how Social Security Numbers are used and to \nidentify risks associated with such use.\n---------------------------------------------------------------------------\n    \\1\\ CDIA, as we are commonly known, is the international trade \nassociation representing over 300 consumer data companies that provide \nfraud prevention and risk management products, credit and mortgage \nreports, tenant and employment screening services, check fraud and \nverification services, systems for insurance underwriting and also \ncollection services. As we will discuss below, the secure and protected \nuse of the social security number (SSN) is an important key to the \neffectiveness of these systems and services.\n---------------------------------------------------------------------------\nOVERVIEW\n    Before I discuss how our members\' systems make use of the social \nsecurity number, it is important to take into account key demographics \nabout our society that help explain why the SSN so important.\nPersonal identifiers change:\n    While it probably doesn\'t occur to most of us, the identifiers we \nuse in everyday life do change and more often than most might think. \nFor example, data from the U.S. Postal Service and the U.S. Census \nconfirm that over 40 million addresses change every year. More than \nthree million last names change due to marriage and divorce. While \ntrends in naming conventions are changing, this fact is still far more \noften true for women than men.\nWe use our identifiers inconsistently:\n    It is a fact that we use our identifiers inconsistently for a wide \nvariety of reasons. First, many citizens choose to use nicknames rather \nthan a given name However, there are times where, in some official \ntransactions, a full name is required, Some consumers, when hurried, \nuse an initial coupled with a last name, rather than their full name or \nnickname. Consumers are also inconsistent in the use of generational \ndesignations (e.g., III, or Sr.). Finally, there are times where \nconsumers themselves do make mistakes when completing applications. \nThus, a consumer\'s identifiers may be presented in different ways in \ndifferent databases and, in some cases, the data may be partially \nincorrect.\nPersonal identifiers are not always unique:\n    We think of our names as a very personal part of who we are. \nHowever, our names are less common and unique than we might think. For \nexample, families carry forward family naming conventions leading to \nsome consumers sharing entirely the same name. Further, U.S. Census \ndata shows that both first and last names are, in some cases amazingly \ncommon. Fully 2.5 million consumers share the last name Smith. Another \n3 million share the name Jones and more than thirteen million consumers \nhave one of ten common last names. First names are also used very \ncommonly leading to common naming combinations. Eight million males \nhave either the name James or John and a total of 57 million males have \none of ten common first names. An additional 26 million females have \none of ten common first names. Common naming conventions make it more \ndifficult and in some cases impossible to depend on name alone to \nproperly match consumer data.\nIdentifiers are shared:\n    Our birthday is a unique day in our lives, but it is, nonetheless, \na date shared with hundreds of thousands of others. Date of birth alone \nis not an effective identifier. Family members who live together end up \nsharing addresses and per our discussion above, where consumers share \nthe same name due to family traditions and the address at which they \nlive, distinguishing one consumer from another is complex.\nData entry errors do happen:\n    Hundreds of millions of applications for credit, insurance, \ncellular phone services, and more are processed every year. There is no \ndoubt that in the process of entering a consumer\'s identifying \ninformation errors can be made which carry forward into databases and \ninto the reporting of data to consumer reporting agencies.\n    By taking into account all of these facts about our identifying \ninformation, it becomes far more apparent why the SSN is key in \nstabilizing a consumer\'s identifying information in the context of \ndatabases. The SSN is a truly unique identifier.\nUSE OF THE SSN BY CDIA MEMBERS\n    CDIA\'s members produce a range of critical consumer data products \nwhich bring great value to individual consumers, to society and the \nnation\'s economy. Our members design products used for determinations \nof a consumer\'s eligibility for a product or service, to prevent fraud \nand to aid in the location of consumers for a variety of reasons.\nConsumer Data Products Used for Eligibility Decisions\n    Many CDIA-member products are focused on helping consumers to gain \naccess to the goods and services for which they apply. These \ntransactions focus on a consumer\'s eligibility and, as such, the \nconsumer data products used are regulated under the Fair Credit \nReporting Act (15 U.S.C. 1681 et seq.) as ``consumer reports.\'\' \nEligibility determinations include applications for any type of credit \nincluding unsecured credit, home purchases, auto financing, home equity \nloans, as well as for insurance of all types, employment, government \nbenefits, apartment rentals, and for other business transactions \ninitiated by the consumer.\n    The FCRA, enacted in 1970, has been the focus of careful oversight \nby the Congress resulting in significant changes in both 1996 and again \nin 2003. There is no other law that is so current in ensuring consumer \nrights and protections are adequate.\n    Of particular importance to our discussion here today, is the FCRA-\nimposed duty on consumer reporting agencies by the FCRA (and similar \nstate laws) that reasonable procedures be used to ensure the maximum \npossible accuracy of the information contained in all types of consumer \nreports. This duty is established for the protection of consumers. The \nSSN plays a vital role in helping our members to achieve the ``maximum \npossible accuracy\'\' standard.\n    Absent use of the SSN as a key identifier, consumers would be \nharmed in many ways. Consider the following illustrative examples:\n\n    <bullet>  Incomplete data harms consumers: There would be a likely \nincrease in the inability of consumer reporting agencies to properly \nmatch incoming information to the correct consumer about whom the \ninformation relates. Think about the consequence to consumers of having \na consumer ``credit\'\' report that does not contain all of the accounts \nthat they pay on time and which makes them eligible for the lowest cost \nloans.\n    <bullet>  Incomplete data harms our banking system: The absence of \nthe SSN would also put at risk the safety and soundness of lending \ndecisions due to less information being included in consumer ``credit\'\' \nreports due to data matching problems.\n    <bullet>  Incomplete data prevents consumer access to goods and \nservices: Think about the consequence for consumers when a consumer \nreporting agency cannot locate the proper file on a consumer and thus a \nlender, insurer or other service provider wanting to do business with \nthe consumer has to deny the application.\n\n    There is no doubt that consumer reporting agencies of all types \nprovide tremendous benefits to consumers directly and to the nation\'s \neconomy and the use of the SSN in the context of our members\' systems \nhelps bring forward these benefits. Consider the following:\n\n    <bullet>  Access to home ownership: Every homeowner benefits from a \ncredit reporting system that reduces the costs of all mortgage loans by \na full two percentage points, thus putting literally thousands of \ndollars in disposable income into their pockets.\\2\\ Homeownership is no \nlonger a luxury of the well-to-do, but is a truly democratized American \ndream enjoyed by nearly seventy percent of the population.\\3\\\n---------------------------------------------------------------------------\n    \\2\\ Kitchenman, Walter., U.S. Credit Reporting: Perceived Benefits \nOutweigh Privacy Concerns., Pp. 5 (1998).\n    \\3\\ Turner, Michael., The Fair Credit Reporting Act: Access, \nEfficiency & Opportunity. Pp. 8 (2003).\n---------------------------------------------------------------------------\n    <bullet>  Check fraud prevention: Check fraud is reduced thanks to \nCDIA members\' systems. It is estimated that more than 1.2 million \nworthless checks enter the payment system every day in the United \nStates. This number speaks to the risks, but also the success of our \nmembers\' systems which service as many as 40 billion check transactions \na year.\n    <bullet>  Tenant screening services: Tenant screening services help \nall landlords to make informed decisions, as well. Consider the \ncircumstances of a retiree who owns a rental property on which he or \nshe depends for income. A tenant screening service mitigates risks for \nliterally millions of such individuals in a country where the majority \nof units for lease are owned by individuals and not by corporations.\n    <bullet>  Employment/security screening: SSNs serve as vital links \namong disparate records that help businesses verify prospective \nemployees\' identities and conduct thorough, accurate background checks \nto ensure workplace safety and business security. Our members\' systems \nand services help to ensure that hardened criminals and sex offenders \ndo not end up working at daycare centers, schools, nuclear power \nplants, or secure-ID areas of airports.\n    <bullet>  Small business B-to-B transactions: An SSN is the key \nbusiness entity identifier to virtually all sole proprietorships or \npartnerships. As a result, SSNs are required to facilitate business-to-\nbusiness transactions between small businesses.\n    <bullet>  Securitized credit markets: Confidence in the U.S. \nsecurities market is made possible by accurate financial histories \ncompiled using the SSN as a key identifier. Restricting use of the SSN \ncould undermine confidence in these securities, resulting in \nsubstantially higher consumer costs for credit, including mortgages and \nauto loans.\n    <bullet>  Investigative services and insurance fraud: SSN access is \nan important tool for investigative services and insurance fraud \ninvestigation. Insurance fraud losses are estimated to exceed $79 \nbillion a year--$900 per family--in the U.S. Prohibiting use of SSNs \nfor investigative purposes could drive those costs even higher.\nConsumer data products used for fraud prevention and location\n    Not all CDIA member products are used for an eligibility \ndetermination, but products regulated under other laws such as the \nGramm-Leach-Bliley Act (Pub. L. 106-102, title V) are used in critical \nways for the benefit of all consumers. CDIA\'s members represent the \nleading companies in the field of consumer identity verification, fraud \nprevention and location services.\nFraud prevention systems:\n    Fraud prevention systems deploy a diversity of strategies, but \nclearly the SSN plays an important role. In fact, in 2004 alone, \nbusinesses conducted more than 2.6 billion searches to check for \nfraudulent transactions. As the fraud problem has grown, industry has \nbeen forced to increase the complexity and sophistication of the fraud \ndetection tools they use. As the importance of fraud detection tools \nincreases, the potentially negative consequences of allowing ``access \nand correction\'\' to these databases must be considered in order to \nprotect the accuracy of the included data, and thus the overall \nintegrity of these tools.\nHow do Fraud Detection Tools Work?\n    Fraud detection tools are also known as Reference, Verification and \nInformation services or RVI services. RVI services are used not only to \nidentify fraud, but also to locate and verify information for public \nand private sector uses. While fraud detection tools may differ, there \nare four key models used.\n\n    <bullet>  Fraud databases--check for possible suspicious elements \nof customer information. These databases include past identities and \nrecords that have been used in known frauds or are on terrorist watch \nlists, suspect phone numbers or addresses, and records of inconsistent \nissue dates of SSNs and the given birth years.\n    <bullet>  Identity verification products--crosscheck for \nconsistency in identifying information supplied by the consumer by \nutilizing other sources of known data about the consumer. Identity \nthieves must change pieces of information in their victim\'s files to \navoid alerting others of their presence. Inconsistencies in name, \naddress, or SSN associated with a name raise suspicions of possible \nfraud.\n    <bullet>  Quantitative fraud prediction models--calculate fraud \nscores that predict the likelihood an application or proposed \ntransaction is fraudulent. The power of these models is their ability \nto assess the cumulative significance of small inconsistencies or \nproblems that may appear insignificant in isolation.\n    <bullet>  Identity element approaches--use the analysis of pooled \napplications and other data to detect anomalies in typical business \nactivity to identify potential fraudulent activity. These tools \ngenerally use anonymous consumer information to create macro-models of \napplications or credit card usage that deviates from normal information \nor spending patterns, as well as a series of applications with a common \nwork number or address but under different names, or even the \nidentification and further attention to geographical areas where there \nare spikes in what may be fraudulent activity.\nWho uses Fraud Detection Tools?\n    The largest users of fraud detection tools are financial \nbusinesses, accounting for approximately 78 percent of all users. \nHowever, there are many non-financial business uses for fraud detection \ntools. Users include:\n\n    <bullet>  Governmental agencies--Fraud detection tools are used by \nthe IRS to locate assets of tax evaders, state agencies to find \nindividuals who owe child support, law enforcement to assist in \ninvestigations, and by various federal and state agencies for \nemployment background checks.\n    <bullet>  Private use--Journalists use fraud detection services to \nlocate sources, attorneys to find witnesses, and individuals use them \nto do background checks on childcare providers.\nLocation services and products\n    CDIA\'s members are also the leading location services providers in \nthe United States. These services, which help locate individuals, are a \nkey business-to-business tool that creates great value for consumers \nand business alike. Locator services depend on a variety of matching \nelements, but again, a key is the SSN. Consider the following examples \nof location service uses:\n\n    <bullet>  There were 5.5 million location searches conducted by \nchild support enforcement agencies to enforce court orders. Access to \nSSNs dramatically increases the ability of child support enforcement \nagencies to locate non-custodial, delinquent parents (often reported in \nthe news with the moniker ``deadbeat dads\'\'). For example, the \nFinancial Institution Data Match program required by the Personal \nResponsibility and Work Opportunity Reconciliation Act of 1996 (PL 104-\n193) led to the location of 700,000 delinquent individuals being linked \nto accounts worth nearly $2.5 billion.\n    <bullet>  There were 378 million location searches used to enforce \ncontractual obligations to pay debts.\n    <bullet>  Tens of millions of searches were conducted by pension \nfunds (location of beneficiaries), lawyers (witness location), blood \ndonors organizations, as well as by organizations focused on missing \nand exploited children.\n\n    Clearly location services bring great benefit to consumers and to \nbusinesses of all sizes. Availability and permitted use of the SSN \nremains vital to the effective operation of these services for both \nprivate and public sector purposes.\nINFORMATION SECURITY AND THE SSN\n    Because of recent media coverage regarding security breaches of \nsensitive personal information and also general concerns about identity \ntheft, some consumers may well feel that data about them presents risks \nthat outweigh benefits. But in reality as we have discussed above, \nthere is clear and convincing value in the uses of such data, including \nthe SSN, that bring direct value to consumers and our nation\'s economy, \nwhich must be preserved.\n    Consumers and media often assume that use of the SSN is wholly \nunregulated and this is not the case. As we\'ve discussed, the FCRA \nregulates SSNs in the context of consumer reports and our members\' use \nof the SSN is also regulated under the restrictions of the GLB. Other \nlaws such as the Fair Debt Collection Practices Act (15 U.S.C. 1601 et \nseq.), the Health Insurance Portability and Accountability Act (Pub. L. \n104-191), and the Drivers Privacy Protection Act (18 U.S.C. 2721 et \nseq.), also impose protections on sensitive information about consumers \nwhich in turn protects the SSN.\n    However, CDIA\'s members recognize that the laws which cover them \nmay not extend to all and clearly the SSN is sensitive personal \ninformation which must be protected. The following statement delivered \nduring our testimony before the Senate Banking Committee on September \n22, 2005 continues to reflect our position on protecting sensitive data \nabout consumers, including the SSN:\n    ``The discussion of safeguarding sensitive personal information and \nnotifying consumers when there is a substantial risk of identity theft \nhas expanded beyond the boundaries of financial institutions. It is our \nview that rational and effective national standards should be enacted \nboth for information security and consumer notification as it applies \nto sensitive personal information, regardless of whether the person is \na `financial institution.\' \'\'\n    As this committee knows, there are a number of House and Senate \ncommittees that are focused on developing uniform national standards \nfor ensuring the protection of sensitive personal information. We \nbelieve that enactment of national standards will ensure that the SSN \nis protected by all who possess it. New nationwide safeguards \nregulations authored by the Federal Trade Commission will compel all to \ndeploy physical and technical strategies for the protection of \nsensitive information about consumers. Further they will likely cause \nAmerican businesses to move to encrypt such information and finally \nsome will question why they gather the SSN in the first place. Further, \ninformation safeguards rules would effectively bring into question the \nbusiness model of operating publicly available websites that sell a \nconsumer\'s SSN to virtually anyone who is willing to pay the price.\n    Ultimately national standards for the safeguarding of the SSN and \nother sensitive personal information will address consumer concerns and \nperceptions. These are all good public policy results and CDIA remains \ncommitted to a constructive dialogue as various bills move through the \nHouse and Senate.\nPUBLIC RECORDS AND THE SSN\n    The historical debate about the presence of the SSN in public \nrecords has suggested a binary proposition of either providing everyone \nwith access to all of a record, including the SSN, or to deny all \naccess to the record with an SSN. We think that this paradigm is dated \nand today encouraging trends in the technologies used to make public \nrecords available to all citizens, particularly via the internet, are \nallowing state and federal agencies to employ far more sophistication \nin how and when an SSN will be disclosed.\n    It is also encouraging to hear state court organizations discussing \nstrategies for protecting SSNs and CDIA will continue to engage in \nthese dialogues. However, while CDIA believes that disclosure of the \nSSN to the general public must be addressed, we also believe that \npublic records must be made available, including SSNs, to those with an \nappropriate need. States are seeking out dialogue with the private \nsector about future access to public records which shows promise. \nConsider the following excerpt from CDIA\'s April 18, 2002 letter to the \nNational Center for State Courts:\n    ``. . . consider the example of the Maryland court access project \nthat tried to create a limitation on bulk access to court records. The \nconcerns raised at a public hearing in December 2000 `prompted [Chief] \nJudge Bell to appoint an expanded, more representative task force.\' \\4\\ \nThe expanded task force recently issued a final report and noted that \nrequestors of bulk data sell that information `with value added\' to \ntheir customers. The report also noted that registration agreements \nbetween the court and the bulk data requestors 1can provide a vehicle \nfor reasonable safeguards concerning released data.\' \'\' \\5\\\n---------------------------------------------------------------------------\n    \\4\\ Maryland Judiciary Website (visited March 20, 2002).\n    \\5\\ Report of the Maryland Court of Appeals Committee on Access to \nCourt Records 10 (Feb. 2002).\n---------------------------------------------------------------------------\n    Public records play a vital in our society and bring value to the \nconsumer data industry\'s members. Bankruptcy records, tax liens and \njudgments are part of consumer ``credit\'\' reports used by lenders to \nmake decisions that implicate safety and soundness. Records of eviction \nare critical to landlords who must themselves pay the bills and attempt \nto lease properties to consumers who will do the same. Validating \nprofessional licenses for employment screening agencies is yet another \nuse of public records, as is accessing criminal histories.\n    Through the development of nationwide databases of public record \ninformation, our members have solved the problems inherent in having to \nsearch through tens of thousands of federal and state court houses and \nagency databases. In this way, the SSN is as important an identifier in \na public document as it is in a private-sector database. It is a \ncritical identifier for all of the data management reasons we discuss \nabove. Without an SSN, a consumer can simply alter a few items of \ninformation, such as moving to a new address, or even changing a name \nand thus separate himself/herself from a bankruptcy record, a tax lien, \na record of eviction and even a criminal history, in some cases. \nClearly this is not a positive outcome for consumers or for American \nbusinesses which are on the front lines of making, for example, fair \nand accurate risk-based lending and employment decisions, while at the \nsame time fighting identity theft and fraud.\n    Some federal proposals have suggested that state agencies must \nlimit access to the SSN. The concern of the CDIA\'s members is that this \napparent unfunded mandate will drive under-funded state agencies to \neither stop requesting the SSN when processing vital records, or to \nsimply deny all access to the SSN for a variety of reasons including \nthe fact that they cannot fund a bifurcated system of access to the SSN \nfor some but not for others. Additionally, because some state public \naccess laws appear to prohibit a bifurcated approach.\n    Ultimately, dialogue with state and federal agencies coupled with \nthe advancement of technologies will address concerns about public \nrecords which contain SSNs. An unfunded mandate will destabilize the \nsystem of public records which is so important to our democracy.\n    In the context of discussing governmental agencies and the SSN, we \ndo want to acknowledge and are encouraged by the Social Security \nAdministration\'s efforts to explore the viability of a system by which \na party may verify that a particular SSN is associated with a \nparticular name. A discussion of this system can be found in the \nDecember 30, 2005 edition of the Federal Register, Vol. 70, No. 250. \nEntitled ``Consent Based Social Security Number Verification Process,\'\' \nthe service will be available starting June 2006 and only a limited \nnumber of parties are allowed to enroll. As it currently stands, this \nsystem is very cumbersome and does not allow for a real-time automated \nprocess of SSN verification which will render it very ineffective for \nassisting victims of identity theft and also preventing the crime. We \nhope that the SSA will move towards a truly automated, system that \nmeets the broader needs of the data industry.\nCONCLUSION\n    In conclusion, you can see that the underlying theme in the \ndiscussion of SSN uses is that of balance and ultimately ensuring the \nsecurity of the number. Law that that imposes national uniform \ninformation security regulations on all who possesses the SSN in \ncombination with a person\'s name and address, is the most responsible \nand constructive focus for Congress. In contrast, law that overreaches \nin attempting to limit use of the SSN is likely to merely take fraud \nprevention tools out of the hands of legitimate businesses at the \nexpense of consumers. Ironically, to prevent fraud you must be able to \ncrosscheck information. To maintain accurate databases, you must be \nable to maintain a range of identifying elements. Absent the \navailability of the SSN, we will be less able to build accurate data \nbases, to accurately identify records and to help prevent identity \ntheft through the development of fraud prevention and authentication \ntools. Ultimately consumers expect us all to accomplish the goals of \nprotecting and securing the SSN, and also ensuring the accuracy and \neffectiveness of databases which contain information about them.\n    Thank you for this opportunity to testify.\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Thank you, Mr. Pratt. Mr. Hulme?\n\nSTATEMENT OF BRUCE H. HULME, PRESIDENT, SPECIAL INVESTIGATIONS, \n      INC., AND LEGISLATIVE DIRECTOR, NATIONAL COUNCIL OF \n    INVESTIGATION AND SECURITY SERVICES, NEW YORK, NEW YORK\n\n    Mr. HULME. Good afternoon, Mr. Chairman and Members of the \nCommittee. My name is Bruce Hulme. I represent the National \nCouncil of Investigation and Security Services. I am a New York \nState licensed private investigator, having been so for 42 \nyears. My company is Special Investigations, Inc.\n    As a profession that has been helping victims through the \nidentity theft maze for years, our experience is that such \nthefts result from purloining of documents, files, charge \nslips, credit cards, and wallets, and according to the Javelin \nStrategy and Research survey, 47 percent of such theft is \nperpetrated by friends, neighbors, and employees.\n    We agree that additional measures can be taken to further \nreduce incidents of theft. Our concern is that some measures, \nunless amended, will have unintended consequences that would \nhelp create a safe haven for criminals and do substantial \ndamage to the judicial system. We support Congressional efforts \nto protect data breaches. We favor limiting the use of the SSN \non government documents, student IDs, and health cards. \nCertainly we do not believe that such information should be \nsold over the Internet to anybody willing to pay a fee.\n    However, we do have strong concerns with some provisions of \nH.R. 1745 and a Senate measure that would have direct and \nharmful effects on how our profession conducts lawful \ninvestigations by banning the sale of SSNs. The result would be \nthat databases would not have accurate information about \nindividuals and private investigators would be hampered in our \nefforts to locate individuals and perform many functions \nessential to the judicial system.\n    There are 46,000 American men named Bill Jones. Many of \nthem have the same or similar dates of birth. Private \ninvestigators and others, of course, need to be able to \ndifferentiate between subjects for many purposes, including \nevidence in court proceedings.\n    One critical and effective tool used by private \ninvestigators is what is referred to as the credit header, that \nportion of a credit report that includes location and \nidentifying information but discloses no credit data. That \nsearch is by far the most important one used by investigators \nwhen locating female witnesses. Women often change their names \ndue to marriage and divorce, and it also helps to locate other \nindividuals, particularly transients.\n    Pending legislation provides exceptions for law \nenforcement. This creates an obvious issue of due process \nbecause prosecutors with the full resources of the State will \nalways have use of this tool while the accused would not. \nDatabase searches led directly to a witness or witnesses who \nrecanted testimony and helped free a man wrongly imprisoned for \n20 years. The same situation holds true in civil matters. \nPrivacy legislation restricting the use of SSNs generally \nprovides an exception for insurance companies, thereby creating \nan imbalance between insurance defense and plaintiffs\' bars.\n    Investigators do not have access to a central criminal \nhistory database, as does law enforcement, so it is essential \nto develop address information when seeking information about \nprior convictions so that we know what courthouses to go check \nout. In both civil and criminal trials, attorneys need to know \nthe backgrounds of witnesses. We urge Congress that any \nrestriction on the sale of SSN information include an exception \nto enable licensed private investigators and other State-\nregulated persons to conduct lawful investigations, including \nbut not limited to identifying or locating missing or abducted \npersons, witnesses, criminals and fugitives, parties to \nlitigation, parents delinquent in child support payments, organ \nand bone marrow donors, pension fund beneficiaries, and missing \nheirs.\n    Here are four quick examples of how we use SSNs. I was \nretained by the New York courts in a guardianship proceeding to \nrecover $300,000 in assets stolen from a 97-year-old retired \nArmy officer. It was a successful result. The suspect pled \nguilty, was sentenced 3 to 9 years in State prison and ordered \nto pay $360,000 in restitution and we got all the money back.\n    In San Francisco, a businessowner started getting \nstatements in the mail saying he owed tens of thousands of \ndollars on computers and other equipment he never purchased. \nSomeone had hijacked his identity, opened credit cards, store \naccounts in his name, set up a similar-type website in his name \nand his company\'s name. The police said they would only take a \nreport, they wouldn\'t investigate. They passed it off to the \nSecret Service. His loss was $80,000. The Secret Service said \nat that point, they had a $100,000 threshold. A private \ninvestigator came into the case and with the use of credit \nheader information found that an ex-employee, checking things \nout, had been using three names or several different SSNs and \nbirthdates.\n    One of our association members reported a case that \ninvolved a woman who was left a sizeable inheritance by her \nuncle in the form of a trust. The investigator was able to \neventually determine that she was recently married and living \nin Utah somewhere destitute, out of a pickup truck. That had a \nsuccessful result.\n    A former president of our council testified just several \nyears ago, I think, about a similar case before this Committee \nregarding a custodial parent whose child had been abducted 2 \nyears prior. Her mother spent 2 years having a run-around with \nthe police and politicians trying to get somebody to do the \njob. She went to this private investigator. Within basically \nminutes, running a credit header, determined enough leads as to \nwhere the husband might be, turned the information over to the \npolice. They went there, got in, and the child was reunited \nwith its mother.\n    As detailed in our statement, the association of regulators \nwhich regulates our profession, they support granting an \nexception for our industry in this, and we stand ready to \nassist the Committee in any way we can and thank you for this \nopportunity, Mr. Chairman.\n    [The prepared statement of Mr. Hulme follows:]\n  Statement of Bruce Hulme, Legislative Director, National Council of \n        Investigation and Security Services, New York, New York\n    Good afternoon Mr. Chairman and members of the subcommittee. My \nname is Bruce H. Hulme and I am appearing today on behalf of the \nNational Council of Investigation and Security Services (NCISS) where I \nserve as Legislative Director. I am past president and chairman of the \nCouncil and serve as a member of the Board of Directors. I have been a \nlicensed private investigator in New York for more than forty years and \nam president of Special Investigations, Inc.\n    We appreciate the opportunity to discuss how Social Security \nnumbers can be used by perpetrators of identity theft, what Congress \ncan do to mitigate the risk of such fraud, and the impact of pending \nlegislation.\n    Social Security numbers (SSN\'s) have become the de facto identifier \nin the United States. The Social Security number is the single best way \nto distinguish among people of similar or identical names. That is why \nbusinesses have used SSN\'s on identity cards and customer records. It \nis also why SSN\'s are sought by those who wish to commit fraud, so they \nmay attempt to establish an identity.\n    When Congress created the Social Security System nearly three-\nquarters of a century ago, it was not intended that the numbers issued \nto nearly every American would become the universal identifier for \nmodern times. But that is what has occurred. An entire system of \ncommerce is predicated on citizens being able to identify themselves \nbased on this identifier. Unless each person has a viable substitute \nsuch as a password to take the place of the SSN, Congress should be \nvery circumspect about eliminating the use of the SSN as an identifier.\n    Just as most commerce uses the SSN, the civil and criminal justice \nsystems also require a means of identifying parties and witnesses in \nlawsuits and the commonality of dates of birth makes the SSN a \nnecessary tool to be sure the courts have positive identification. It \nis true that some abuses have occurred by the misuse of the SSN, but \nthe percentage of misuses pale in comparison to the number of positive \nuses applied every day in our economic and justice systems.\n    As a profession that has been trying to help victims through the \nidentity theft maze for years, we applaud Congress\' efforts to put \nadditional laws on the books that will bring victims some relief. \nRecently enacted legislation should be of some assistance. The Fair and \nAccurate Credit Transactions Act included several identity theft \nprovisions, and the 108th Congress adopted the Identity Theft Penalty \nEnhancement Act to increase sentences of convicted fraudsters. We were \nappalled to read recently that two caretakers who committed such fraud \nagainst their elderly patients received suspended sentences. Until the \ncourts take the crime seriously, it will be difficult to deter such \nthieves.\n    Although a percentage of identity thieves no doubt gather their \nvictims\' identities from the Internet, our experience is that most such \nthefts result from the purloining of documents, files, charge slips, \ncredit cards, and wallets from restaurants, stores, trash bins, the \nmails and private property. In fact, according to the Javelin Strategy \nand Research survey 47 percent of such theft is perpetrated by friends, \nneighbors or employees.\n    But we agree that additional measures can be taken to further \nreduce incidents of theft. Our concern is that some measures, unless \namended, would have unintended consequences that could help create a \nsafe haven for criminals and do substantial damage to the judicial \nsystem.\n    Publicity over data breaches for the past year have led to numerous \nbills in Congress and state legislatures to require that sensitive \npersonal information, including Social Security numbers, be protected \nby those who hold it. Such breaches have occurred not only from data \nproviders, but universities, banks and other institutions. Breaches \nhave also occurred at every level of government. These breaches have \nbeen caused by lost computers, hacking, misplaced files and other \nmeans.\n    We support efforts to protect such sensitive personal data. \nConsumers should be informed when such data are divulged and should be \nprovided assistance in order to protect themselves. And, businesses and \nother institutions holding such data have a responsibility to protect \nit.\n    With regard to Social Security numbers, we support limiting their \nuse on government documents, student id\'s, health cards and other means \nof identification that could fall into the wrong hands. And we \ncertainly don\'t believe that such information should be sold on the \nInternet to anyone willing to pay a fee. Many of these provisions are \nfound in HR 1745, the Social Security Number Privacy and Identity Theft \nProtection Act.\n    We do, however, have strong concerns with provisions of HR 1745 and \nother measures that would have a direct and harmful effect on how our \nprofession conducts lawful investigations. The Senate Committee on \nCommerce, Science and Transportation, for example, amended S 1408, the \nIdentity Theft Protection Act, to effectively prohibit the sale of \nSocial Security numbers with few exceptions. The result would be that \ndatabases would not have accurate information and private investigators \nwould be hampered in our efforts to locate individuals and perform many \nof the functions essential to the judicial system.\n\n                   How Private Investigators Use SSNs\n\n    As indicated earlier, the Social Security number is critical for \ndetermining identity. In past hearings, Lexis-Nexis has testified that \nthere are 46,000 men in America named Bill Jones. Many of them have the \nsame or similar dates of birth. Licensed private investigators need to \nbe able to positively differentiate between subjects when rendering \nreports which will be used for many purposes including evidence in \ncourt proceedings. Behind any civil or criminal court case of \nconsequence, you will usually find a licensed private investigator \nassisting the attorneys involved in such cases. The investigators are \nalso then bound by the attorney-client privilege which adds a further \nmeasure of security to the information developed on individuals during \nthe course of an investigation. Contrary to popular belief, most \ninvestigators work for law firms, insurance companies and corporations, \nnot the general public.\n     One critical and effective tool used by private investigators is \nthe ``credit header,\'\' that portion of a credit report that includes \nlocation and identifying information but discloses no credit data. That \nsearch is by far the most important one currently used by investigators \nwhen locating female witnesses. Since women often change surnames over \nthe course of their lives due to marriage or divorce, it makes it even \nmore critical to be able to identify them by their SSN. The SSN does \nnot change and allows us to locate these otherwise difficult to find \nwitnesses. In California recently, database searches led directly to \nwitnesses who recanted testimony and helped free a man wrongly \nimprisoned for twenty years.\n    In both civil and criminal trials, justice is served best by all \nparties getting access to all possible witnesses. Access to a fair \ntrial is a fundamental right of American citizens. Without the ability \nto identify and locate all witnesses, that right is threatened.\n    The address information is used routinely to locate witnesses, \nparticularly when they may be transient. Legislation restricting the \nuse of Social Security numbers always provides exceptions for law \nenforcement. This creates an obvious issue of due process because \nprosecutors, with the full resources of the state, would have use of \nthis tool while the accused would not. The criminal justice system \nneeds balance. . . . the private investigator provides a counterpoint \nto the investigators in the public sector.\n    The same situation holds true in civil matters. Privacy legislation \ngenerally provides an exception for insurance companies, thereby \ncreating an imbalance between the insurance defense and plaintiffs\' \nbars in obtaining evidence in civil trials.\n    Investigators do not have access to the central criminal history \ndatabase that law enforcement officials do, so it is essential to have \naddresses when seeking information about prior convictions. With prior \naddress data, investigators know which courthouse records to search. \nThis information is important for more than pre-employment purposes. In \nboth civil and criminal trials, attorneys need to know the backgrounds \nof witnesses and potential witnesses.\n    Address information is valuable in locating stolen assets. I was \nretained by the New York courts in a guardianship proceeding to recover \nover $300,000 in assets stolen from a 97-year-old retired Army officer \nby a neighbor caregiver. Through the use of credit headers I was \nimmediately able to determine the identities and locations of the \nwrongdoer\'s relatives, properties and eventually their assets that had \nbeen taken from the victim. It was the initial header check on the \nsuspect that uncovered an address in Myrtle Beach, South Carolina. That \ninformation developed leads that the victim\'s assets had been used to \npurchase expensive automobiles, real property in South Carolina and \nincreased the bank account balances of the suspect. All under the guise \nthat the 97-year-old victim, who was suffering from dementia, had given \nhis life savings as gifts to the suspect. The suspect eventually pled \nguilty and was sentenced to three to nine years in state prison for \nsecond-degree grand larceny and ordered to pay $360,000 in restitution \nto the estate of the victim, who, regrettably, died a month before \nsentencing of the defendant.\n    In numerous cases, such data have led to recovery of funds from \npersons not meeting their child support obligations. And missing \npersons, including abducted children, have been located with leads \ngenerated from credit headers.\n    It is no secret that law enforcement does not have the resources to \nrespond effectively to most victims of identity theft. The crime is \ndifficult to solve, and often involves several jurisdictions. So \nvictims turn to private investigators for assistance.\n    Congress must consider that many licensed private investigators are \nformer law enforcement officers and can assist the overwhelmed public \nlaw enforcement sector in fraud and identity theft related cases. Law \nenforcement is often under-manned and ill--equipped to deal with \nidentity theft and usually violent crime cases take precedence. The \nvictims then must turn to investigators in the private sector to assist \nthem in determining the extent of the fraud and the identity of the \nperpetrators. Investigators must have access to the necessary tools \nsuch as the credit header SSN search. Without access to this important \ninvestigative tool, it will become easier for criminals to shield \nthemselves from discovery. They are fully aware of the limitations \nfacing law enforcement.\n    Here is how SSN information helped solve one case: In San \nFrancisco, an investigator reports working a case for a successful \nbusiness owner who started getting statements in the mail saying he \nowed tens of thousands of dollars on computers and other purchases, \nnone of which he knew anything about. He found someone had hijacked his \nidentity, opened credit card and store accounts in his name and had \neven opened a web page mirroring his web page and had an e-mail address \nsimilar to his. The San Francisco Police said they would take a report, \nbut would not investigate and suggested he go to the Secret Service. \nAlthough losses approached $80,000, the Secret Service declined to take \na report because losses had not reached a $100,000 threshhold. The \nvictim hired a private agency. Using credit header information, they \nlearned that the suspect, was an ex-employee with three aliases, three \nor four social security numbers, and three different dates of birth. \nThe suspect was apprehended and prosecuted.\n    Such information is also valuable for locating lost heirs. One of \nour association members reported a case that involved a woman who was \nleft a sizeable inheritance by her uncle in the form of a trust. The \nfamily had not had any contact with her for a number of years, so the \nattorney handling the trust asked for assistance. By using header \ninformation, the investigator was able to eventually determine that she \nwas recently married and was living someplace in Utah. He was able to \nlocate her husband\'s relatives and learned that she and her husband \nwere destitute and living out of a pick-up truck in Oregon. He sent the \nrequisite documentation to her in care of her husband\'s relatives and \nshe rightfully obtained her substantial inheritance. Without access to \nheader information, the investigator would not have been able to locate \nher.\n    A former president of our Council--NCISS--helped a custodial parent \nwhose child had been abducted two years prior. The mother had spent \nthose two years unsuccessfully trying to keep the police interested and \nwriting various public officials seeking help. A credit header search \nrevealed an address in Palm Beach, Florida, where the estranged husband \nhad recently applied for credit. The police apprehended the husband and \nreunited the child with his mother.\n    One of our Texas members reports using a Social Security number \n``trace\'\' to locate a female in need of assistance. A charitable fund \nhad been set up to assist her with prenatal care and her childbirth. \nThe credit header was an efficient means for the licensed investigator \nto quickly locate a needy person for charitable purposes at low cost.\n    Last year, NCISS met with members of the Federal Trade Commission \nto apprise them of the many ways private investigators rely on the SSN. \nWe presented a dozen actual case examples of the sixty we had brought \nwith us to that meeting.\n    We urge Congress to provide that any restriction on the sale of \nSocial Security information include an exception to enable licensed \nprivate investigators and other state regulated persons to conduct \nlawful investigations, including, but not be limited to, identifying or \nlocating missing or abducted persons, witnesses, criminals and \nfugitives, parties to litigation, parents delinquent in child support \npayments, organ and bone marrow donors, pension fund beneficiaries and \nmissing heirs.\n    It is ironic that the end result of such well-intentioned \nlegislation would be to make it more difficult to assist victims of \nidentity theft and other frauds. It would make it less likely that the \ncourts would hear from all relevant witnesses in both civil and \ncriminal trials and less likely that stolen funds are recovered.\n    In conclusion, I would like to share with this committee the \nposition of the International Association of Security and Investigative \nRegulators with respect to this issue. IASIR is an association of state \nand province regulatory agencies in the United States and Canada, \nhaving jurisdiction over a large part of the security industry and \ninvestigative profession. At their annual meeting last fall they passed \nthe following motion:\n    IASIR acknowledges that regulated investigators are an integral \npart of the effective administration of justice, civil as well as \ncriminal. In addition, state licensed investigators provide an \nessential service to the public, to businesses and government, and to \nthe legal community for the purpose of preventing or investigating \nfraud including identity theft; reducing business losses such as \nembezzlement, robberies, burglaries, thefts, fires and other casualty \nclaims; investigating workplace allegations including harassment, \ndiscrimination and other workplace risks; locating missing and abducted \npersons, witnesses, heirs, and deadbeat parents; as well as assisting \nin uncovering significant misrepresentations or critical non-\ndisclosures in conducting due diligence.\n    Since access to personally identifiable information is crucial to \nthe welfare of many and often concerns not only individual physical \nsafety but the protections of homeland security, IASIR recognizes and \nsupports the necessity of those investigators, who are licensed and \nmonitored by regulatory agencies, to maintain access to personal \nidentifying information including but not limited to, social security \nnumbers, dates of birth and driver\'s license numbers to assist in their \nimportant investigative mission.\n    NCISS stands ready to assist the Committee in its endeavor to \nprotect consumer privacy without causing unintended consequences.\n\n                                 <F-dash>\n\n    Chairman MCCRERY. Thank you, Mr. Hulme. Ms. Robinson, I am \ncurious about one thing that we have discovered. According to \nthe FTC, 61 percent of identity theft victims never contact the \npolice department to report their identity theft. Do you have \nany idea why that is?\n    Ms. ROBINSON. Well, from my experience in working with \nvictims, victims feel like the police don\'t care, and like the \ngentleman just said, the police will only take a report. They \nwon\'t actively investigate the crime. They won\'t actively \npursue the perpetrator.\n    Chairman MCCRERY. Does anybody else have a thought on that? \nMr. Hulme?\n    Mr. HULME. Well, it is multiple jurisdictions that present \nproblems. Law enforcement basically is just now starting to \ncome up to speed. I can tell you from testimony I heard on the \nfirst panel that I probably investigated more ID thefts than \nthe two government agencies. I know many of our members \ncertainly have. I think it is a question of passing the buck, \nbut it is definitely a major problem that has to be addressed.\n    Chairman MCCRERY. Thank you. Mr. Stein, you mentioned how \nfinancial institutions use SSNs as a tool to help verify the \nidentity of their customers. Could you explain how, for \nexample, a bank\'s customer identification program might work? \nWhat information do you request in addition to the SSN?\n    Mr. STEIN. Identity documents are always requested to prove \nup identity. The SSN helps as a determinant of an individual. \nAs my esteemed colleagues have all represented about the \nSmiths, the Jones, and so forth, the SSN serves to identify the \nspecific Jones or Smith that you are dealing with and to be \nable to tie those relationships, for example, together within a \nfinancial institution, to ensure that when you pull credit \nreports to determine creditworthiness for a loan, a mortgage, a \ncredit card, you are actually receiving the information about \nthe specific applicant who has applied to you so that you can \nmake that credit worthiness decision appropriately.\n    Those are a number of ways in which that number is used. It \nis not used to verify identity per se. It is used to ensure \nthat you are the Smith with whom we are dealing, and then we \nuse your identity documents, typically a driver\'s license in \ntoday\'s society, and perhaps other pieces of identification, \nwhether it be a passport, credit card, whatever, to confirm \nyour identity.\n    The SSN itself doesn\'t confirm your identity in the absence \nof a CBSV or its predecessor, the Enumeration Verification \nSystem, where we have the ability to actually go out to SSA\'s \ndatabase and pull back or confirm the SSN, name, date of birth \ncombination so that we know, in fact, we are dealing with the \nsame person. In the absence of that, the number itself simply \nallows us to tie together disparate people using our disparate \naccounts that are using that same number as an identifier.\n    Chairman MCCRERY. Let us take Ms. Robinson\'s case, for \nexample. Another Ms. Robinson stole her SSN, or got it, started \nusing it, and applied for loans, evidently, and got them. Why \ncouldn\'t that financial institution have just done a couple of \nextra things that might have raised flags and made them \nquestion the person sitting before them? She probably had a \ndriver\'s license, that had her name which was almost the same, \nand it may have left out her middle initial, and that is not \nunusual, and so the person at the bank or the financial \ninstitution said, okay. Maybe then he should have looked at the \naddress on the driver\'s license, and then surely the financial \ninstitution did a credit check. Maybe they should have compared \nthe address on the driver\'s license to the address on her \ncredit report, and when those are not the same, a flag goes up \nand you just either ask her there at the desk or call her back \nand say, there is a discrepancy in the address in your credit \nreport. What is the deal?\n    Mr. STEIN. I have----\n    Chairman MCCRERY. Just a couple things. Why shouldn\'t you \ndo that?\n    Mr. STEIN. I have two answers to that. The first one is, \nagain, going back to the CBSV and the EVS system, had that been \ncommercially available so that the financial institution could \nhave verified the consumer\'s name along with the SSN and along \nwith the date of birth, and assuming that the person who was \nmisrepresenting her didn\'t have all three of those correct and \ndocumentation to support all three of those correct, the \nfinancial institution could have had an opportunity right there \nto have caught that. Number one, I would promote that the \nability to verify that information is a key step in this entire \nprocess.\n    Now, not knowing exactly what the financial institution \nsaw, and so I am--you have sort of asked me to second-guess \nwhat they did or didn\'t do here--but with respect to the credit \nreports that would be pulled based on the SSN and the name, I \nthink that Mr. Pratt here has indicated the volume of address \nchanges that happen in a year and the information tends to lag \nwhat gets into the credit reports, and so it wouldn\'t \nnecessarily in and of itself as the sole trigger. The fact that \nthe address wasn\'t in that credit report that represented the \nperson in front of them wouldn\'t necessarily by itself have \nbeen a key indicator.\n    I also think that in a high-volume environment as card \nissuers deal with, it may also be difficult for them to find \nthose really fine nuances between two people of the same name \nwith the same SSN. I will tell you that had they been using a \ndifferent name with her SSN, there would have been a warning \nthat would have appeared on the credit report that would have \nindicated there is another name in the Bureau that is used \nsharing that same SSN. One of the problems is the very close \nsimilarity between the two names in this particular instance.\n    Chairman MCCRERY. Okay. Mr. Hulme, you have stated that \nyour organization agrees that additional measures can be taken \nto reduce identity theft. You undoubtedly have a lot of \nexperience in dealing with information resellers. Do you have \nany recommendations as to how they can improve their protection \nof SSNs, these resellers?\n    Mr. HULME. First of all, if there was a manner of getting a \nlot of the resellers--and I am not referring to the major ones, \nbut two levels down or a level down--from selling this--pull \nthis off the Internet and eliminate sales to the general public \nand you will eliminate 95 percent of the problems, in my \nopinion.\n    Chairman MCCRERY. Say that again?\n    Mr. HULME. I think one will eliminate 95 percent of the \nproblems if sales of----\n    Mr. BECERRA. Could you repeat the whole answer? Pull it \nfrom the Internet----\n    Mr. HULME. Sure. Don\'t allow the sale of the SSN and \npersonally identifiable information to be sold to the general \npublic over the Internet. That would be my--I think that would \nbe my first, strongest suggestion, and I heard one of the \nspeakers earlier today say there were studies that maybe showed \nthat. I can tell you that anecdotal information, and if you \ntalk to most investigators and certainly our association, we \nthink that if you pull down the sale of these items of personal \ninformation direct to the general public over the Internet, you \nwill eliminate an awful lot of identity theft.\n    Chairman MCCRERY. Thank you. Mr. Levin?\n    Mr. LEVIN. Just one question. To sum up, how easy is it to \nsteal identity?\n    Mr. HULME. Well, I am not a thief, but I would say----\n    [Laughter.]\n    Mr. LEVIN. I said how easy, not how.\n    Mr. HULME. Well, I think in some cases, the door is being \nleft open. In some situations, I think there is the \navailability to get this information and it is being displayed \noften in areas where it shouldn\'t be displayed. The information \nobviously has to come off a lot of government documents, more \nthan are necessary. The tons of mail that we get that get \nsometimes sent to the wrong place, even when it comes back to \nthe Post Office, just check with the postal inspectors and you \nwill find that they are now investigating quite a few crimes \nregarding what has been done with the mail that has been \nreturned.\n    Mr. LEVIN. You are saying it is easy?\n    Mr. HULME. Yes.\n    Mr. LEVIN. Does anybody disagree with that?\n    Mr. PRATT. I don\'t think we disagree with that. I just want \nto emphasize, though, the point that has already been made, but \njust to drive it home, that fraud prevention systems are moving \npast the simple question of do you have a Social and a name \nthat match up together. We discuss in our testimony different \nfraud prevention strategies that are being used today, and they \nreally do have to do with bringing together disparate sets of \ninformation and attempting to foil the dilemma of having \ninformation which is far too openly sold out on the Internet, \nfor example, by, for example, asking additional questions of \nthe consumer that would probably not--that the ID thief would \nnot necessarily know. In an online environment, it might be to \nask consumers additional questions that the thief probably \nwouldn\'t even know even if he or she had stolen a wallet.\n    Fraud prevention systems have clearly moved past the \nsimple, do you have a set of data and have you matched it, yes \nor no, and we, too, agree that the SSA concept of matching \ninformation is a good one, but I suspect we would all agree \nthat it is not the sum total of how you ultimately validate a \nconsumer\'s identity. You may be able to validate that you have \na real SSN, but then you are going to raise yellow flags. What \nabout that address?\n    The Fair Credit Reporting Act, by the way, was amended in \n2003 to obligate all lenders to have a system by which they \nwill compare the old address or the address on the application \nwith the address that you find in the credit report.\n    What about fraud alerts? The Fair Credit Reporting Act was \namended in 2003 to obligate a lender to pay attention to the \nfraud alert, to make sure that it was actually processed, so \nthat if one was placed on the file, that there would be \nadditional contact measures taken to further authenticate the \nidentity of the individual and attempt to foil the criminal \nfrom opening up new accounts.\n    I think those kinds of steps have been taken and that is \nwhy the world is a little different than even the last time I \nappeared before this Committee, when we talked about SSNs and \nthe availability of them. Those are good steps along the \ncontinuum and the challenge is thieves become more clever and \nso, too, do the fraud prevention systems that have to stop \nthem.\n    Mr. LEVIN. Thank you.\n    Chairman MCCRERY. Mr. Johnson?\n    Mr. JOHNSON. Thank you, Mr. Chairman. Mr. Pratt and Mr. \nStein, I guess, you all haven\'t talked about how some companies \nwill use the last four digits and some of them the first five, \nmaybe, to identify people. Does that have any validity at all?\n    Mr. PRATT. From our perspective, again, Congressman, the \nFair Credit Reporting Act stipulated that consumers could \ntruncate SSNs when they order their credit report so that they \ncould look at their credit report. For example, some laws \nattempt to do that.\n    Yes, there can be some strategies where I suppose \ntruncation works. There are risks any time you start to \ntruncate the number. For example, we actually have run data to \nshow that even with the last four digits of an SSN, you can \nmatch up as many as 90 different Joneses in this country. You \nhave to be careful. You have to be careful about when and where \nto employ a truncation strategy. In some kinds of database \nmanagement systems, that is good. In some, that might not be so \ngood.\n    Mr. STEIN. I think that one of the reasons that we use \ntruncated SSNs is a layered approach for role-based access. If \nyou segment a need around Social Security within a financial \ninstitution, there are three sets of needs. There are those \npeople who don\'t ever need to see an SSN. You may have \nemployees who, by virtue of their job role, have no need to \never see a customer\'s SSN, and by virtue of that role-based \naccess, when they pull up information on the customer to \nrespond to a question or whatever, they shouldn\'t see the \ncustomer\'s SSN at all.\n    There may be others within the organization who have a need \nto verify that as a component of the identity verification \nprocess, but they have no need for the full SSN. They don\'t \nneed to know the whole thing for that consumer. A customer \nservice center, for example, gets a phone call from Mr. Jones \nand one of the ways they may verify Mr. Jones in a remote \nenvironment is by having Mr. Jones tell them, or alternatively \nkey into a voice response unit the last four digits of their \nSSN as a means to uniquely identify that Mr. Jones is the one \nfor whom I am going to pull their account records. Again they \nhave no need to see the full thing.\n    Then there are other employees within the organization who \nhave clearly a need to work with the entire SSN, and that is a \nmuch, much smaller population. We are reducing the risk \nthroughout that whole thing by taking it from the old world of \nfinancial institutions, where every employee saw every SSN, to \na very small number who see a full SSN.\n    Mr. JOHNSON. Now, we tried at one time to get the military \nto change their procedure, but all of them use the SSN as an ID \nand it is on their ID card. Not only that, but my wife\'s ID \ncard has both our numbers on it, not just one. Have you got any \nsuggestions about how we can fix that problem, because that is \nan easy theft, I think.\n    Mr. PRATT. Congressman, all I can say is I think the world \nhas changed enough that it is time to ask that question again \nof the military to see if they are willing to alter that system \nnow.\n    Mr. JOHNSON. Okay. We can make them do it, I guess.\n    [Laughter.]\n    Mr. PRATT. It is true that every time the SSN is used on a \nmedical identification card, when it is used on all the \ndifferent places that it can occur, those are all risks that I \nthink my colleague to the left has expressed are potential \nrisks.\n    Mr. JOHNSON. Mr. Hulme, you are talking about people \nstealing your identity. I got stopped at the airport because \nthey said I was a terrorist. Sam Johnson--there are a lot of \nthem around.\n    [Laughter.]\n    They didn\'t have to have an SSN to verify who I was. They \nused other means. I think there is a way to get around that if \nwe really want to and you all are probably doing as good a job \nas anybody. Have you got any suggestions on that?\n    Mr. HULME. No. All I can say is that some people definitely \nneed to have access to that SSN. Along the same line, in \nfairness, it doesn\'t need to be laid out for the world to have.\n    Mr. JOHNSON. Yes. You are right. Thank you. Thank you, Mr. \nChairman.\n    Chairman MCCRERY. Mr. Becerra?\n    Mr. BECERRA. Thank you all for your testimony. It is \nenlightening and also very disturbing. Ms. Robinson, let me ask \nyou something. Have you cleared up your credit record yet?\n    Ms. ROBINSON. No, sir. As a result of Nicole Robinson using \nmy data, one of the credit reporting agencies is still \nreporting her bad debt as mine.\n    Mr. BECERRA. Okay, stop. Mr. Pratt, you represent the \ncredit bureaus.\n    Mr. PRATT. I do.\n    Mr. BECERRA. You hear Ms. Robinson saying that she has been \ngoing through this for years. Is there any reason why, if we \ncontact you pretty soon, you can\'t tell us that the credit \nbureaus haven\'t taken care of Ms. Robinson\'s credit record?\n    Mr. PRATT. None whatsoever.\n    Mr. BECERRA. Okay. We will make sure that you get Mr. \nPratt\'s phone number----\n    [Laughter.]\n    Mr. BECERRA. --and you will have----\n    Ms. ROBINSON. May I also add, though, that I have been \ndealing with that particular credit reporting agency for the \nlast 4 years over the same problem, and it prevented me from \ngetting a mortgage last year because they were reporting \n$35,000 in bad debt that belonged to her.\n    Mr. BECERRA. Stop. Mr. Pratt said that you won\'t worry \nabout that.\n    Ms. ROBINSON. Okay.\n    Mr. BECERRA. We will be in touch, and certainly you will be \nin touch with----\n    Ms. ROBINSON. Yes, I will be in touch.\n    Mr. BECERRA. Thank you, and Mr. Pratt, thank you for that. \nMr. Stein, let me ask a question. What does Countrywide do with \ncustomers who, for whatever reason, close their accounts and \ntheir relationship with Countrywide. What do you do, what does \nCountrywide do with that personal private data that it has for \nthat individual?\n    Mr. STEIN. There may be continuing obligations we have even \nafter a relationship is closed, and let me speak more broadly \nfor the financial industry in general because I think it is \ntrue whether lenders or financial institutions. There may be \ncontinuing obligations we may have with respect to that \ninformation that keeps it within the organization. That having \nbeen said, again, we talked about this role-based access and \nrestricting the access to the information to those who have a \ntrue need so that you see only really that information which \nyou have need by virtue of your job.\n    Mr. BECERRA. I have a mortgage through Countrywide. I pay \nit off. I no longer owe Countrywide any money. You have my SSN \nthrough the fact that I took out a mortgage with you. I no \nlonger have any banking activity with you. You still maintain a \nfile with my SSN?\n    Mr. STEIN. For our retention period, yes.\n    Mr. BECERRA. Which is how long?\n    Mr. STEIN. I believe it is probably either 5 or 7 years. \nOffhand, I don\'t----\n    Mr. BECERRA. Who has access to that?\n    Mr. STEIN. Again, it would depend on the specific job \nfunctions within an organization, but it would be those people \nwho have, by virtue of their job function, a need to access it. \nFor example----\n    Mr. BECERRA. Let me, because I am going to run out of time, \nso I don\'t want to do that, but let me ask you this. Would it \nbe feasible economically for a company, an industry, to try to \ndo more to shut down access to that personal data sooner than 5 \nto 7 years or make it much more restricted in terms of access \nto that information, once there is no need to have an ongoing \nreview of that information because the accounts, in essence, \nhave been closed?\n    Mr. STEIN. Right, and I don\'t want to imply that once you \nclose your relationship, the same people who have had access to \nthat information when your relationship was open necessarily \nhave it when your relationship is closed.\n    Mr. BECERRA. Okay.\n    Mr. STEIN. There is some population that does continue to \nhave it, because you may call up a year later or 2 years later \nand have some question about your closed relationship that \nsomeone now needs to get access to.\n    Mr. BECERRA. Well, let me ask you this. If I were to call \nyour toll-free number to check on the status of my mortgage 2 \nyears after I have already finished and I punch in on the phone \nmy old mortgage account number and I have some questions I need \nto have answered so I get an actual voice on the phone, would \nthat person be able to pull up the information that would \ninclude the SSN?\n    Mr. STEIN. The answer is, it depends.\n    Mr. BECERRA. Okay. Don\'t go any further, because I will run \nout of time. If you can guide us on this, I think what we have \nheard is that we have got to try to limit the access as much as \npossible, but we also have to recognize that a lot of commerce \ndepends on this information. Let us know what you are doing. \nWhat are the best practices that you are using to make sure \nthat once you don\'t need it, you are not using it, and once you \ndon\'t need it, others can\'t access it. It would be helpful to \nknow who is doing a good job of making sure that we are closing \nthe door on that information the quicker we can.\n    Mr. STEIN. Right.\n    Mr. BECERRA. That would be helpful. A hypothetical here. \nSocial Security says, tomorrow, we are going to scrap the \ncurrent SSN and the system that we have used. We are going to \nreinstate something totally different. Maybe it is with a \nnumber, but it is different. Everyone in America who has an \nSSN, you will be issued something else. At the same time, we \npass a law saying we prohibit the use of this new Social \nSecurity identifier for anything other than Social Security. \nWhat do your industries, your agencies, what do you do?\n    Mr. PRATT. Beyond panic, I guess, would be the question.\n    [Laughter.]\n    Mr. PRATT. I think there are several parts to that answer. \nOne, clearly, biometrics are being used in certain contexts and \nso, yes, there are even today--again, it is very important to \ndistinguish between how the number is used to create an \naccurate database to say, I have data associated with this \nnumber and with this name together, versus how I am going to \nidentify you and make sure that you are 100 percent who you say \nyou are. Even today, consumers\' acceptance of concepts like \nbiometrics is much greater than it was perhaps a decade ago.\n    I think you would always find some sort of substitutes \neffect. I think the question is at what level of disruption in \nthe system overall, between the time that you were to close off \nthe system completely and then try to reinstate something else.\n    There would be, by the way, a legacy effect. All the data \nthat was currently mediated by SSNs would remain. Court records \nwould remain associated with the SSN. You are really talking \nalmost generationally, anyway. You are talking about very, very \nlong periods of time as you move away. It does get into \ndiscussions of cards and whether cards will have algorithms on \nthem and whether cards will store additional information and \nwhether they are used for limited purposes or more extended \npurposes. These are very complicated issues that certainly go \nwell beyond the pale of our industry or, I suspect, any of us \nhere at the table.\n    Mr. BECERRA. One way or the other, you will find some type \nof universal identifier that can help you keep tabs of the \npopulation.\n    Mr. PRATT. Well, I would say two things could happen. \nNumber one, you could have less data mediated, which means, for \nexample, consumers today who already are unhappy when we don\'t \nhave a certain account that they have been paying on time for \nmany, many years that Countrywide wants to use to approve a \nloan, when it is not in their credit report, they are also \nunhappy with us, just as they are unhappy when there might be \ndata in their credit report that they say is not theirs. What \nyou do have with the removal of an identifying system or a \nsingle unique identifier like the SSN is potential \ndisintermediating and disconnecting data which can be mediated \nand which can be used for good things, such as me getting the \ncar loan on the weekend or getting the student loan for my kids \nand so on and so forth. There are effects like that that we \nprobably can\'t entirely predict today.\n    Even the FTC was asked to look at how SSNs interplayed with \ncredit reports, and that was a study that was done during the \n2003 FACT Act, and they concluded that, really, you move away \nfrom a binary, good or bad, proposition and you are on a \ncontinuum, move one direction, and maybe there is less SSNs and \nso maybe certain types of risks are reduced, but maybe you have \ndisintermediated data. It was all about do you move toward more \ninclusivity or do you move toward more exclusion or separation? \nThat is the kind of database continuum our members tend to \noperate on. Which way do I go?\n    Mr. BECERRA. Thank you.\n    Mr. STEIN. If I may just take one moment, when you talk \nabout things like biometrics and other kinds of identifiers to \nuniquely identify an individual and you compare it to the SSN \nissue, the one thing to keep in mind is that the SSN is a \nnational unique identifier. In the absence of having a national \nregistry of fingerprints, retinal scans, facial recognition, \nhand geometry, whatever you want it to be, there is no way to \ntake those disparate pieces and put them all together into a \ncredit report. In the absence of that, it is probably more \nlikely rather than less likely that the Nicole Robinsons of the \nworld get joined with someone who really isn\'t them.\n    In this case, the person used her SSN with her same name. \nIn other circumstances, you are going to have people, a whole \nbunch of Nicole Robinsons that may get joined together because \nthere is not that unique identifier that puts them together.\n    Mr. BECERRA. Thank you. Thank you, Mr. Chairman.\n    Chairman MCCRERY. Thank you very much, gentlemen and \nladies. We appreciate your testimony and your responses to our \nquestions.\n    That concludes today\'s hearing. The Subcommittee is \nadjourned.\n    [Whereupon, at 4:40 p.m., the Subcommittee was adjourned.]\n    [Submissions for the record follow:]\n\n                                         Corona Del Mar, California\n                                                     March 27, 2006\n    Dear Members of the Subcommittee and Participants of this series of \nHearings:\n    My name is John Patrick Kenney. I earn my living as a real estate \ndeveloper and I am licensed as a real estate broker in California. I am \na former recipient of Long Term Social Security of Disability Benefits. \nI am recent recipient of the National Republican Congressional \nCommittee Ronald Reagan Medal and 2005 Businessman of the year Award. I \nam also the plaintiff in a Federal District Court Lawsuit against the \ncommissioner of Social Security, currently awaiting a decision in case \n#SACV 05-00426 (MAN). John P. Kenney Vrs. Commissioner of Social \nSecurity. The agency misused my Social Security Number, identifying me \nas the recipient of a mistaken overpayment decision. This resulted in \ndamages similar to those incurred in identity theft and was a violation \nof the bill of rights in the constitution of the United States. As I \nexpect tot win this case, actual damages today are approximately 12.5 \nmillion daollars and increasing at a rate of about $30,000.00 per \ncalendar day. Patrick O\'Carroll, the SSA Inspector General has recently \nin this series and through reports, informed you, that the SSA may have \nmade: 600,000 errors of overpayments and underpayments of the Social \nSecurity Benefits, has put you on notice of this, I\'m sorry to say, \nerror prone agency. The problem is that you, the congress, has backed \nthis error prone agency with police powers to collect erroneous debts \nwith minimal if any oversight. For example, the Federal Trade \nCommission is not permitted to enforce fair credit reporting or fair \ndebt collection laws you enacted for our protection against the SSA. \nThe president\'s management agenda is I believe correct . . . get our \nmoney out of the hands of this poorly managed bureaucracy. So, as a \nconsequence of the above I legitimately expect a ``Social Security\'\' \ncheck soon between $12,000,000.00 and $20,000,000.00 depending on how \nlong this agency wants to fight by withholding evidence, slandering my \ncharacter in the public court record, appealing to the 9th circuit or \nwhatever failure prone tactic they may want to attempt. So . . . this \nerror prone agency should not of and by itself and without real \noversight possess the police powers have given it. I expect to prevail \nin my case and expect some public notice in the media to precipitate \nmany an angry or scared taxpayer to contact you. What would happen to \nthe general fund if 600,000 individuals had the opportunity, the \ninclination, the resources to sue the Social Security Administration \nfor violating the privacy act as I have done? Please call on me if you \nneed some help, even though I\'ve missed meals and been forced by the \nabove to try to relocate my business out of the country. I\'m willing to \nhelp this subcommittee any way I am able.\n                                                     John P. Kenney\n\n                                 <F-dash>\n\n           Statement of J. Michelle Sybesma, Fishers, Indiana\n    You may find it hard to believe that once upon a time I carried an \naffidavit from the United States Postal Inspection Service verifying \nwas indeed who I professed to be. From the looks of my photo, you might \nfind it amusing to read my most recent state registered identification \nhad said that I was not only Male, but of a Latin American heritage, 2 \ninches shorter, and about 15 lbs heavier than when I stood in front on \nyou.\n    The truth was, before I figured out what happened I had a house in \nthe low-income projects in Danville, IL and another just outside my \nhometown in Indianapolis, IN. Someone was utilizing my personal \ninformation and morphing it into someone that was in no way aligned \nwith the principles of good ethics.\n    This was over ten years ago. I now know better than most what it \ntakes to establish new social security number and have to spend years \nin the fighting to reclaim your identity. However, I am no victim. I am \ninclined to believe things happen for a reason and this happened to me \nso I might teach others how to prevent it. The experience left me \nsmarter, credit wiser and fighting mad to make sure it does not happen \nto others.\n    The most recent Federal Trade Commission statistics show that 12.7% \nof individuals surveyed have been personally touch by some sort of \ncredit card fraud or identity theft.\n    As a consultant and professional speaker who covers topic to teach \ngroups the importance of proper precautions to risk factors of Identity \ntheft, I can tell you a more accurate statistic never stood.\n    If requested to testify, I can tell you a great deal about the \ninherent risk in business using our SSNs a primary identifier. Most \npeople do not understand the long term impact this can have on the rise \nof this epidemic. Please consider contacting me to speak for your sub-\ncommittee. Not since the Fair Credit Reporting Act of 1996 has there \nbeen a piece of potential legislation that had such impact on that of \nIdentity Theft. Thank you.\n\n                                  <all>\n\x1a\n</pre><script data-cfasync="false" src="/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js"></script></body></html>\n'