top of page
  • Writer's pictureASA Newsroom

WTAS: Members of Congress Support Introduction of Protecting Investors’ Personally Identifiable Info

WASHINGTON, D.C. – Last week, U.S. Senator John Kennedy (R-LA) and Congressman Barry Loudermilk (R-GA) reintroduced the Protecting Investors’ Personally Identifiable Information Act in the U.S. Senate and U.S. House, respectively.

The Protecting Investors’ Personally Identifiable Information Act is supported by the American Securities Association. Members of Congress and ASA President & CEO Chris Iacovella issued statements of support for the legislation:

“We commend Senator John Kennedy (R-LA) and Congressman Barry Loudermilk (R-GA) for reintroducing the Protecting Investors’ Personally Identifiable Information Act, which would prohibit the Securities and Exchange Commission's (SEC) collection of American investors’ personal and financial identifiable information (PII) by the Consolidated Audit Trail (CAT),” said ASA President & CEO Chris Iacovella. “The biggest cyberthreat facing American investors today is the unprecedented and dangerous collection of their personal and financial information by a centralized database that will become the target for cybercriminals and state-sponsored hackers from Russia and China.”

“Investors trust the U.S. stock market with their savings and their privacy, but the SEC’s Consolidated Audit Trail would expose every American investor’s Social Security number and personal data to malicious hackers. The CAT is unconstitutional, and it hoards personal information it doesn’t need. My bill would make sure that the SEC only houses information it needs, and only while it needs it. As long as hackers and foreign enemies keep targeting Americans, the government shouldn’t endanger their personal information by creating one great, big, centralized target for bad actors,” said Senator John Kennedy.

“The federal government has two huge problems when it comes to cyber security: they collect way too much personally identifiable information (PII), and they have a poor track record of protecting this information from hackers. Look no further than the 2021 SolarWinds hack, which saw more than 30,000 public and private organizations breached and is considered one of the largest cyber hacks in modern history. As I’ve said many times, you don’t have to protect what you don’t collect; unfortunately, the federal government hasn’t learned this lesson. The Securities and Exchange Commission (SEC) has been barreling forward with a new system – the Consolidated Audit Trail (CAT) – which tracks every trade an individual investor makes and links it to their identity through a centralized system. Not only is collecting all this information unnecessary, regulators already have similar systems that don’t easily match identities with transactions, but it also creates another security vulnerability and a target for hackers,” said Congressman Barry Loudermilk. “This is why I have introduced the Protecting Investors’ Personally Identifiable Information Act, which would help prevent an accidental or intentional breach by restricting the SEC’s ability to collect this data in the first place. With this legislation, the SEC would only be able to request this data if they are investigating or enforcing violations of federal securities law. Furthermore, they would be required to destroy the data after they are finished with it. This is a commonsense solution aimed to protect investors, and it in no way hinders the SEC’s mission. I look forward to my colleague’s support and ushering this bill through the 118th Congress.”

“The SEC’s personally identifiable information database would be a prime target for hackers,” said Senator Tommy Tuberville (R-AL). “It would also be yet another massive compliance burden on Main Street investors and investment brokers large and small. I’m supporting this legislation today to put a stop to this and protect the personal information of the American people.”

"Too often we have seen cyber criminals and other bad actors take advantage of the personally identifiable information of investors and consumers. Retail investors need to have confidence that their data is protected by the SEC and not vulnerable to accidental or intentional data breaches that can put their privacy at risk. This legislation will further protect retail investors and help ensure the SEC is using this data in a targeted manner," said Congresswoman Ann Wagner (R-MO). “The growing amount of data the federal government collects is concerning. The SEC’s new database, the Consolidated Audit Trail (CAT), will collect and store the personal information of every individual that invests in the stock market - making CAT a prime target for cybercriminals to steal the identity of Americans. I am proud to support Rep. Loudermilk’s bill which would protect the financial privacy of American investors and Americans’ personal data from threats,” said Congressman French Hill (R-AR). “As it currently stands, the SEC’s submission of personally identifiable information of traders to CAT poses too great of a risk to U.S. citizens. Under the current system, there would be grave consequences for investors should there be an accidental or intentional breach of CAT data. I support the important work Rep. Loudermilk is doing to ensure the SEC doesn’t inadvertently violate the privacy rights of the American people and to protect them and our financial system from malicious hackers and foreign adversaries. This legislation is a major step in the right direction toward safeguarding our citizens’ sensitive data from threats,” said Congressman Dan Meuser (R-PA).

Introduced by U.S. Senator John Kennedy (R-LA) and cosponsored by Sens. John Boozman (R-AR), Jerry Moran (R-KS), Tom Cotton (R-AR), Steve Daines (R-MT), Katie Britt (R-AL), Mike Rounds (R-SD) and Tommy Tuberville (R-AL) in the Senate, S. 2230- the Protecting Investors’ Personally Identifiable Information Act would prohibit the SEC from requiring market participants to submit investors’ personally identifiable information to the CAT.

Congressman Barry Loudermilk introduced H.R. 4551- the Protecting Investors’ Personally Identifiable Information Act in the U.S. House of Representatives joined by cosponsors Reps. French Hill (R-AR), Bill Huizenga (R-MI), Ann Wagner (R-MO), Dan Meuser (R-PA), Young Kim (R-CA), and Zach Nunn (R-IA).

Fox Business reported on ASA’s and Congressional Republicans’ efforts to prohibit the SEC’s collection of American investors’ personal and financial identifiable information.

In May 2020, ASA launched, a nationwide grassroots movement mobilizing all Americans to help stop the collection of retail investor data.


About the American Securities Association

American Securities Association, based in Washington, DC, represents the retail and institutional capital markets interests of regional financial services firms who provide Main Street businesses with access to capital and advise hardworking Americans how to create and preserve wealth. ASA’s mission is to promote trust and confidence among investors, facilitate capital formation, and support efficient and competitively balanced capital markets. This mission advances financial independence, stimulates job creation, and increases prosperity. The ASA has a geographically diverse membership of almost one hundred members that spans the Heartland, Southwest, Southeast, Atlantic, and Pacific Northwest regions of the United States.


bottom of page