Washington – The Computer & Communications Industry Association (CCIA) has made a significant push for stronger federal privacy protections, submitting comments to the House Energy & Commerce Committee’s comprehensive digital privacy working group on April 7, 2025. The CCIA's advocacy underscores the growing concern regarding digital privacy and the need for clear regulations to safeguard online users.
CCIA Vice President for Federal Affairs Brian McMillan emphasized the widespread support for a national privacy law, stating, "Consumers and companies alike broadly support a strong, uniform, national privacy law. We appreciate the opportunity to provide the comprehensive digital privacy working group with our perspectives on privacy legislation to develop durable rules of the road, while encouraging innovation and avoiding infringing on important principles such as freedom of speech." This call for a cohesive approach to privacy comes at a time when surveys indicate a rising tide of concern among the public regarding digital safety.
Recent data reveals a stark reality: the FBI has issued warnings about criminals exploiting U.S. taxpayer identities to file false tax returns and fraudulently claim refunds. The FBI’s Internet Crime Complaint Center reported over 1,000 complaints in the past year related to this type of identity theft, a staggering 26 percent increase from the previous year. This alarming trend highlights the vulnerability of the average American to identity-related crimes.
Adding to the urgency, the Federal Trade Commission noted that in 2024, over 1.1 million identity theft cases were reported, marking a 9 percent increase from the previous year. The public is taking notice of these threats, as revealed by a U.S. News and World Report survey of 2,000 U.S. adults. Nearly three-quarters (71 percent) of respondents indicated that they plan to take more serious measures to protect their digital privacy in 2025.
However, the survey also uncovered a troubling lack of digital literacy among Americans. Only half (53 percent) of adults feel they possess sufficient knowledge about how to protect their personal data online. When it comes to password management, the results are concerning: about 24 percent of adults reported rarely or never changing their passwords, while 21 percent only did so annually. This lack of proactive measures leaves many individuals exposed to potential breaches.
Updated guidelines from the National Institute of Standards and Technology emphasize the importance of long, unique passwords over frequent changes, yet many Americans still neglect basic password hygiene. Furthermore, nearly 27 percent of respondents admitted to never having used tools such as VPNs, ad blockers, or privacy-focused browsers, which can significantly enhance online security.
The rise in cybercrime is not just anecdotal; it is reflected in national data. In 2023, data breaches reached a record high, with over 3,200 incidents reported. Although 2024 saw a slight dip in the number of breaches, it brought a staggering 211 percent increase in the number of individuals affected. Major companies like Ticketmaster, Change Healthcare, and AT&T suffered massive breaches, exposing millions of consumers to potential fraud.
According to Crowdstrike’s 2025 Global Threat Report, adversaries are becoming increasingly efficient and focused in their attacks, mirroring the organizational structures of the enterprises they target. This trend underscores the need for robust defenses against such sophisticated threats.
One major contributor to increased vulnerability is the expanding digital footprint of consumers. Every online purchase, sign-up form, and social media interaction leaves traces of personal data scattered across the internet. Unsurprisingly, 91 percent of survey respondents expressed concern about the information available about them online, with one in three feeling “very concerned.” The larger a person’s digital footprint, the greater the number of access points for malicious actors.
But the risks associated with digital exposure extend beyond fraud. The more data algorithms collect about a user, the more they curate and filter content, potentially reinforcing confirmation biases. This digital echo chamber can limit access to diverse viewpoints and facilitate the spread of misinformation. Algorithmic bias is another serious concern, particularly when AI is used to make decisions about hiring, promotions, or insurance.
AI itself introduces a new layer of digital risk. According to cybersecurity firm Coalfire, the top threats associated with AI include data leakage, bias, and overcollection. Data leakage occurs when AI unintentionally accesses sensitive data not meant to be exposed, while overcollection happens when AI systems gather more information than users realize, expanding digital footprints without consent.
The U.S. News and World Report found that 90 percent of U.S. adults are worried about AI’s privacy implications, with 40 percent stating they are very concerned. This anxiety is compounded by insecure internet practices, as more than one in five Americans regularly use public Wi-Fi networks for sensitive transactions like banking or online shopping.
Surveillance is another area of growing concern. The survey revealed that an overwhelming 87 percent of Americans expressed fear over foreign governments accessing their data, and 82 percent voiced concern about surveillance by the U.S. government. Despite existing data protection laws, over half of Americans believe these laws are insufficient, and more than 30 percent admitted they are unsure whether the current laws adequately protect their data.
This uncertainty fuels feelings of helplessness. Thirty-eight percent of Americans believe they have little control over their personal online data, while 9 percent feel they have no control at all. These fears are reinforced by real-world data; in 2024, Americans lost $27.2 billion to identity fraud, a 19 percent increase from 2023.
The summer months saw the highest incidence of identity theft, reflecting a time of increased spending and online activity. Many of these crimes originated from successful cyberattacks on cloud services or data brokers. The Javelin Strategy & Research 2025 Identity Fraud Study highlighted the need for stronger security protocols, better consumer education, and more robust industry collaboration.
As the landscape of digital privacy continues to evolve, the path forward requires a collective shift in how these issues are addressed. Financial institutions must enhance fraud detection and response systems, while governments need to update and clarify privacy legislation to better reflect the modern data economy. Most importantly, individuals must become more digitally literate.
As it stands, only half of American adults feel confident in their ability to protect their data online, and 90 percent believe digital literacy should be taught in schools. Digital education must extend beyond the classroom to reach adults, particularly those aged 30 to 39, who are currently the most likely to report identity theft.
While digital tools can be powerful allies in the fight for privacy, they are not silver bullets. The real key lies in a coordinated effort that blends education, regulation, innovation, and individual responsibility. Americans are becoming more aware, but awareness alone isn’t enough to combat the growing threats in the digital landscape.
