Editing Data broker (section)

=== Calls for regulation in the US ===
A 2007 [[University of California, Berkeley|University of California]] study, after requesting and analyzing information-sharing practices at 86 companies, found many operating under an [[opt-out]] model that it described as inconsistent with consumer expectations, and recommended that the [[California State Legislature|California state legislature]] require companies to disclose their information-sharing policies using clear, unambiguous language, and consider creating a centralized, user-friendly method for consumers to opt out of information-sharing.<ref>{{Cite journal | ssrn=1137990 | title=Consumer Information Sharing: Where the Sun Still Don't Shine | last=Hoofnagle, and Jennifer King | first=Chris Jay | date=17 December 2007 | journal=(working Paper) }}</ref>

The proposed US Data Accountability and Trust Act (introduced in 2009)<ref>{{cite web | title=Data Accountability and Trust Act: Federal Breach Notification, Data Security Policies and File Access Addressed | website=Privacy Compliance & Data Security | date=7 May 2009 | url=https://dataprivacy.foxrothschild.com/2009/05/articles/proposed-law/data-accountability-and-trust-act-federal-breach-notification-data-security-policies-and-file-access-addressed/ | access-date=12 March 2021}}</ref> contained a number of requirements for auditing and verification of accuracy of data held by information brokers, and additional measures in the case of a security breach. The bill also gave identified individuals the means and opportunity to review and correct the data held that related to them. It passed through the [[United States House of Representatives]] in the [[111th United States Congress]], but failed to pass the [[United States Senate]]. It was revived by the [[112th United States Congress]] in 2011 as H.R. 1707.,<ref>[http://www.govtrack.us/congress/bills/112/hr1707 Data Accountability and Trust Act (2011; 112th Congress H.R. 1707)]. GovTrack.us. Retrieved on 12 November 2013.</ref> but died after being referred to committee. The bill was first introduced by Rep. [[Bobby Rush]] [D-IL1] on 30 April 2009, H.R. 2221.<ref>{{Cite web | url=http://www.govtrack.us/congress/bills/111/hr2221 | title=Data Accountability and Trust Act (2009; 111th Congress H.R. 2221) | publisher=govtrack.us | access-date=12 November 2013}}</ref>

In 2009, the [[Federal Trade Commission|U.S. Federal Trade Commission]] had recommended the United States Congress develop legislation enabling consumers to see the information that data brokers hold about them, a recommendation it renewed in subsequent reports in 2012 and 2014. In 2013, the [[Government Accountability Office|U.S. Government Accountability Office]] also called for Congress to consider legislation.<ref name="Government of the United States" /><ref name="FTC">{{Cite web | title=TC Recommends Congress Require the Data Broker Industry to be More Transparent and Give Consumers Greater Control Over Their Personal Information | date=27 May 2014 | url=http://www.ftc.gov/news-events/press-releases/2014/05/ftc-recommends-congress-require-data-broker-industry-be-more | publisher=Federal Trade Commission | access-date=31 May 2014}}</ref>

In October 2019, California Governor Gavin Newsom signed into action statute AB 1202. This bill "would require data brokers to register with, and provide certain information to, the Attorney General. The bill would define a data broker as a business that knowingly collects and sells to third parties the personal information of a consumer with whom the business does not have a direct relationship, subject to specified exceptions".<ref>{{Cite web|url=https://leginfo.legislature.ca.gov/faces/billTextClient.xhtml?bill_id=201920200AB1202|title=Assembly Bill No. 1202|date=2019}}</ref> This law was created to safeguard against the "cloak of invisibility" (unregistered, unregulated, untracked information broker) that previous data brokers roamed in.  It was also meant to regulate the purchasing of data in commercial third party buyers, and tracks the data brokers information trades.{{Clarify|date=September 2024}}<ref>{{Cite web|url=https://www.latimes.com/business/story/2019-11-05/column-data-brokers|title=Column: Shadowy data brokers make the most of their invisibility cloak|last=Lazarus|first=David|website=[[Los Angeles Times]]|date=5 November 2019}}</ref> 

Due to the interest in federal regulation, data broker firms have [[Lobbying|lobbied]] and spent $29 million in the year 2020.<ref name=":1" />

In 2025, Zhou Shuai and Yin Kecheng, two China based data brokers wanted by the FBI<ref>{{cite web | url=https://www.fbi.gov/wanted/cyber/zhou-shuai | title=Zhou Shuai }}</ref><ref>{{cite web | url=https://www.fbi.gov/wanted/cyber/yin-kecheng | title=Yin Kecheng }}</ref> were accused by the [[United States Department of State]] of selling sensitive American data to [[Ministry of Public Security (China)|China’s Ministry of Public Security (MPS)]].<ref>{{cite web | url=https://www.state.gov/sanctions-on-china-based-hacker-and-data-broker/ | title=Sanctions on China-Based Hacker and Data Broker }}</ref>