coleman-shrugFormer Sen. Norm Coleman is no stranger to breaches in data security. He authored a bill in 2007 that would have directed federal agencies to disclose breaches of sensitive personal information in a timely manner.

Critics and data security experts have suggested that the Coleman campaign erred when it failed to disclose an alleged breach of donor’s credit card information in late January.

Coleman authored the “Federal Agency Data Breach Protection Act,” which was introduced in the U.S. House in July 2007 and would have required “timely notice to be provided to those individuals whose sensitive personal information could be compromised as a result of such breach.” The bill didn’t get a hearing.

The bill reads:

Establishing policies, procedures, and standards for agencies to follow in the event of a breach of data security involving the disclosure of sensitive personal information and for which harm to an individual could reasonably be expected to result, specifically including —

(A) a requirement for timely notice to be provided to those individuals whose sensitive personal information could be compromised as a result of such breach, except no notice shall be required if the breach does not create a reasonable risk of identity theft, fraud, or other unlawful conduct regarding such individual;