SECURE American Telecommunications Act

This bill puts the Federal Communications Commission (FCC) in charge of approving and protecting the undersea and cross‑border land cables that carry internet and phone traffic. The FCC must set minimum physical and cybersecurity rules within 180 days, and companies must report any cyber incident within 24 hours to the FCC and CISA. If the FCC doesn’t decide on a cable license within 540 days, the license is automatically granted. Penalties for damaging undersea cables would become much tougher.

It also streamlines building and repairs. Cross‑border land cables would need an FCC license, with a single application for all needed federal approvals. A nationwide permit would cover most undersea cable construction and repairs, fewer extra federal permits would be allowed, some environmental reviews would stay simplified, and state and local governments could not block licensed cables based on environmental effects.

Key points

• Who is affected: Companies that build or operate undersea or cross‑border cables; state and local governments near landing sites; and federal agencies receiving reports (CISA, the Navy, and NOAA).
• What changes:
  • FCC, not the President, handles cable licenses and sets security standards; companies must follow them and report incidents fast.
  • No licenses for cables that directly connect to areas controlled by foreign adversaries or to facilities using blacklisted equipment or services.
  • Single, streamlined federal application for cross‑border land cables.
  • Nationwide general permit for building and fixing undersea cables and landing stations; limits on extra federal permits; certain projects stay under simplified environmental review; limits on new state or local rules based on environmental effects.
  • Reports after repairs (within 7 days), shared with CISA, the Navy, and NOAA; yearly public reports on foreign cyber threats to cables; a study on possible cable “protection zones.”
  • FCC joins the International Cable Protection Committee.
• When:
  • 24 hours to report cyber incidents; 7 days to report repairs.
  • 30 days for FCC to join the international committee.
  • 180 days for the FCC to set security rules and build a single application; 180 days for a nationwide permit.
  • 540 days for license decisions (then automatic approval if missed) and for the cable‑protection study report.