WASHINGTON (Reuters) – A group representing major internet companies including Facebook Inc (FB.O), Amazon.com Inc (AMZN.O) and Alphabet Inc (GOOGL.O) said on Tuesday it backed modernizing U.S. data privacy rules but wants a national approach that would preempt California’s new regulations that take effect in 2020.
The Internet Association, a group representing more than 40 major internet and technology firms including Netflix Inc (NFLX.O), Microsoft Corp (MSFT.O) and Twitter Inc (TWTR.N), said “internet companies support an economy-wide, national approach to regulation that protects the privacy of all Americans.”
The group said it backed principles that would ensure consumers should have “meaningful controls over how personal information they provide” is used and should be able to know who it is being shared with.
Consumers should also be able to seek deletion of data or request corrections or take personal information to another company that provides similar services and have reasonable access to the personal information they provide, it said.
The group also told policymakers they should give companies flexibility in notifying individuals, set a “performance standard” on privacy and data security protections that avoids a prescriptive approach and set national data breach notification rules.
Beckerman said “we definitely want to get this in place prior to California because California got it wrong.”
The U.S. Chamber of Commerce also unveiled privacy principles last week that aim to reverse California’s new rules.
Under the law, large companies would be required from 2020 to let consumers view the data they have collected on them, request deletion of data, and opt out of having the data sold to third parties.
Many privacy advocates have called for robust new U.S. data protections.
Laura Moy, deputy director at Georgetown Law’s
Center on Privacy & Technology, told Congress in July that lawmakers should not overturn new state privacy rules and federal agencies “must be given more powerful regulatory tools and stronger enforcement authority” and more resources.
The European Union General Data Protection Regulation took effect in May, replacing the bloc’s patchwork of rules dating back to 1995.