SB 680 - The act prohibits the sharing of personal financial information with any unauthorized person unless the individual consents to such.
The act requires a business or person that conducts business in this state and owns or licenses computerized data to disclose any breach of security of that data to any Missouri resident whose information may, or potentially may have been, acquired by an unauthorized person. Notification requirements are laid out in the act.
The act contains a penalty provision for violations.
The act allows for an individual to place security alerts and security freezes on their credit report, notifying any recipients of the report that the individual may have been a victim of identity theft, and prohibiting the release of the individual's information without the express consent of the consumer. The act details the obligations of consumer reporting agencies in response to this option.
The act is similar to SB 506 (2005).