Abstract

http://ssrn.com/abstract=1268926
 
 

References (72)



 
 

Citations (6)



 


 



Do Data Breach Disclosure Laws Reduce Identity Theft? (Updated)


Sasha Romanosky


Carnegie Mellon University - Heinz College of Information Systems and Public Policy

Rahul Telang


Carnegie Mellon University - H. John Heinz III School of Public Policy and Management

Alessandro Acquisti


Carnegie Mellon University - Heinz College

September 16, 2008

Journal of Policy Analysis and Management, Vol. 30, No. 2, pp. 256-286, 2011

Abstract:     
In the United States, identity theft resulted in corporate and consumer losses of $56 billion dollars in 2005, with up to 35 percent of known identity thefts caused by corporate data breaches. Many states have responded by adopting “data breach disclosure laws” that require firms to notify consumers if their personal information has been lost or stolen. While the laws are expected to reduce identity theft, their effect has yet to be empirically measured. We use panel data from the U.S. Federal Trade Commission to estimate the impact of data breach disclosure laws on identity theft from 2002 to 2009. We find that adoption of data breach disclosure laws reduce identity theft caused by data breaches by 6.1 percent, on average.

Number of Pages in PDF File: 42

Keywords: data breach disclosure, security breach notification, economics of information security, identity theft, fixed effects regression, difference in difference estimation

JEL Classification: C23, K10, L51

Accepted Paper Series





Download This Paper

Date posted: September 19, 2008 ; Last revised: October 13, 2013

Suggested Citation

Romanosky, Sasha and Telang, Rahul and Acquisti, Alessandro, Do Data Breach Disclosure Laws Reduce Identity Theft? (Updated) (September 16, 2008). Journal of Policy Analysis and Management, Vol. 30, No. 2, pp. 256-286, 2011. Available at SSRN: http://ssrn.com/abstract=1268926

Contact Information

Sasha Romanosky (Contact Author)
Carnegie Mellon University - Heinz College of Information Systems and Public Policy ( email )
Pittsburgh, PA 15213-3890
United States
Rahul Telang
Carnegie Mellon University - H. John Heinz III School of Public Policy and Management ( email )
4800 Forbes Ave
Pittsburgh, PA 15213-3890
United States
412-268-1155 (Phone)
Alessandro Acquisti
Carnegie Mellon University - Heinz College ( email )
Pittsburgh, PA 15213-3890
United States
412-268-9853 (Phone)
412-268-5339 (Fax)
Feedback to SSRN


Paper statistics
Abstract Views: 6,012
Downloads: 755
Download Rank: 17,856
References:  72
Citations:  6
Paper comments
No comments have been made on this paper

© 2014 Social Science Electronic Publishing, Inc. All Rights Reserved.  FAQ   Terms of Use   Privacy Policy   Copyright   Contact Us
This page was processed by apollo5 in 0.438 seconds