Want the plain-English version? I'll explain what this bill does.

Congress.wiki Alpha

Color Theme:

About How Congress Works Quiz Congress Wrapped Support Us Roadmap Health Privacy Policy Terms of Service

WhiteHouse.wiki SCOTUS.wiki

Get a weekly summary of what Congress did, delivered every Monday.

This is not an official government website.

Copyright © 2026 PLEJ LC. All rights reserved.

Foreign Influence

Office Spending

Protecting Investors’ Personally Identifiable Information Act (S-658) · Congress.wiki

Pros & Cons

The bill strengthens privacy protections for individuals' personal data and reduces some compliance exposure for firms, but it does so at the cost of faster timeframes and narrower routine access that may weaken regulators' ability to investigate and enforce against market abuse.

Potential Benefits

2

Middle-class families and other market participants: their personal identifying information (name, SSN, address, IP, etc.) will no longer be routinely included in the Consolidated Audit Trail and must be destroyed quickly after an investigation ends, reducing the risk of mass data exposure and long-term retention.
Civil Rights
middle-class-families, taxpayers, market-participants
Financial institutions and exchanges: the bill narrows when they must hand over personally identifiable information, lowering ongoing compliance obligations and potential liability for exchanges and their members.
Economy
financial-institutions

Potential Drawbacks

2

Taxpayers, investors, and regulators: restricting routine PII collection and requiring rapid destruction after an investigation could hinder the SEC's ability to detect, reconstruct, or analyze market abuse across related matters, reducing enforcement effectiveness.
Justice
taxpayers, investors, regulators
Financial institutions and exchanges: the requirement to produce PII within 24 hours when requested may create operational strain, accelerate costs for data retrieval and transfer, and increase short-term compliance burdens.
Economy
financial-institutions

Based on analysis of 2 sections of legislative text.

Topics & Classification

Moderately controversial

Policy Subjects

Civil Rights & Liberties

Privacy & Surveillance

+0.8

General & Procedural

Procedural Corrections

0.0

Finance & Banking

Securities & Markets

+0.6

Consumer Financial Protection

+0.4

Financial Inclusion

0.0

Federal Agencies

SEC

Sponsors (9)

Bill Summary

Summary

Prohibits the SEC from requiring exchanges, national associations, or their members to submit investors’ personally identifiable information (PII) as part of consolidated audit trail (CAT) reporting, except when the SEC itself requests PII for an investigation or enforcement action. When the SEC requests PII for such enforcement purposes, the exchange, association, or member must provide the information within 24 hours (unless given an extension), and the SEC must destroy the PII no later than one day after the investigation or matter ends. Defines PII to include common identifiers (name, address, birth date or year, Social Security number, phone, email, IP address) and any data that can be used to distinguish or trace an individual alone or when combined with other data. The law limits routine collection of PII for CAT reporting while preserving SEC access for investigations under tight timing and destruction rules.

Key Points

Click to see evidence

All Legislation

Senate Bill 658S 658

Protecting Investors’ Personally Identifiable Information Act

Finance and Financial Sector

4 pages

senate
house
president

Introduced February 20, 2025 by John Neely Kennedy · Last progress February 20, 2025

What do you think?