PolicySoupstir the potALPHA

H.R. 6161 (119th)Bill Overview
Full Analysis

SEC Data Protection Act

Finance and Financial Sector|Finance and Financial Sector
Sponsor
David ScottDFORMER
Cosponsors
Support
Bipartisan
Introduced
Nov 19, 2025
Discussions
0
Bill Text
View ↗
Current stageCommittee

Referred to the House Committee on Financial Services.

Introduced
Committee
Floor
President
Law
Congressional Activities
01 · The brief

The bill amends Section 204 of the Investment Advisers Act of 1940 to require the Securities and Exchange Commission (SEC) to adopt, within one year and after notice-and-comment, policies and procedures reasonably designed to protect sensitive, nonpublic proprietary information it receives from investment advisers.

The required policies must address when the SEC requests such information, safeguard it according to sensitivity, limit access to appropriate staff, and protect it from unlawful use or disclosure.

The provision is focused on internal SEC handling and disclosure practices for adviser-supplied proprietary information and does not in the text change other substantive duties of advisers or SEC enforcement authorities.

Passage45/100

On content alone, this is a narrow administrative refinement with limited fiscal impact and low ideological salience — features that generally increase a bill's chances. The requirement for notice-and-comment rulemaking and the one-year deadline are procedural safeguards that make the mandate realistic. Countervailing uncertainties — such as whether stakeholders view the change as redundant of existing SEC practices or as unduly constraining oversight/transparency — could generate targeted opposition or delay, keeping the likelihood from being high. Overall, the content suggests moderate chance of enactment, contingent on procedural handling and stakeholder reactions.

CredibilityAligned

Relative to its intended legislative type, this bill is a focused administrative directive that clearly requires the SEC to adopt data-protection policies for adviser-provided proprietary information through notice-and-comment rulemaking within one year. It provides high-level elements the policies must address but leaves technical and procedural detail to the agency.

Contention15/100

Scope and definition: disagreement over what counts as ‘sensitive, nonpublic proprietary information’ and whether that scope could be overbroad.

02 · What it does
Full Analysis

Who stands to gain, and who may push back.

Who this appears to help vs burden50% / 50%
Targeted stakeholdersFederal agencies
Likely helped
  • Targeted stakeholdersIncreased protection of proprietary and sensitive adviser information could reduce the risk of leaks, reputational harm…
  • Targeted stakeholdersClear, formalized policies could improve the SEC’s internal data handling and cybersecurity practices, including staff…
  • Targeted stakeholdersFormal notice-and-comment rulemaking creates transparency about how the SEC will treat adviser data and may give indust…
Likely burdened
  • Federal agenciesLimiting access and adding procedural safeguards could slow internal information sharing at the SEC and complicate enfo…
  • Targeted stakeholdersDeveloping and operating new data-protection policies and controls could impose additional administrative and IT costs…
  • Targeted stakeholdersVague or overly broad definitions of 'sensitive, nonpublic proprietary information' could be used to withhold informati…
03 · Why people split
Full Analysis

Why the argument around this bill splits.

Scope and definition: disagreement over what counts as ‘sensitive, nonpublic proprietary information’ and whether that scope could be overbroad.
Progressive80%

A mainstream progressive would generally view the bill favorably as a modest privacy and data-protection measure that reduces the risk of commercial data leaks and misuse.

They would emphasize protecting sensitive information about clients, trading strategies, or proprietary models and view the notice-and-comment requirement as appropriate.

They might also ask for safeguards to make sure the policy does not create new secrecy that weakens enforcement, whistleblowing or public-interest disclosures.

Leans supportive
Centrist85%

A pragmatic centrist would view the bill as a straightforward administrative improvement: reasonable and narrow, aimed at reducing misuse or accidental disclosure of proprietary data the SEC collects.

They would appreciate the one-year deadline and notice-and-comment requirement as allowing for careful implementation, but would want clarity about scope, costs, and potential tradeoffs with disclosure obligations.

Overall, they would likely support the bill while expecting the SEC to balance confidentiality with enforcement and transparency needs.

Leans supportive
Conservative75%

A mainstream conservative would likely see the bill as a modest and sensible constraint on government handling of private-sector proprietary data, reducing the risk of leaks or misuse by regulators.

They would welcome protections that prevent federal employees from improperly using private commercial information and may see this as limiting government overreach.

However, they may be wary of introducing prescriptive new procedures that increase bureaucracy or cost without clear accountability.

Leans supportive
04 · Can it pass?
Full Analysis

The path through Congress.

Introduced

Reached or meaningfully advanced

Committee

Reached or meaningfully advanced

Floor

Still ahead

President

Still ahead

Law

Still ahead

Passage likelihood45/100

On content alone, this is a narrow administrative refinement with limited fiscal impact and low ideological salience — features that generally increase a bill's chances. The requirement for notice-and-comment rulemaking and the one-year deadline are procedural safeguards that make the mandate realistic. Countervailing uncertainties — such as whether stakeholders view the change as redundant of existing SEC practices or as unduly constraining oversight/transparency — could generate targeted opposition or delay, keeping the likelihood from being high. Overall, the content suggests moderate chance of enactment, contingent on procedural handling and stakeholder reactions.

Scope and complexity
24%
Scopenarrow
24%
Complexitylow
Why this could stall
  • Existing SEC policies and regulations: the bill may be duplicative of current SEC practices; the bill text does not describe how it would differ from or improve current internal safeguards.
  • Implementation costs and resource needs: no cost estimate or funding authorization is provided; the extent of administrative burden on the SEC (technology, training, personnel) is unclear and could influence support.
05 · Recent votes

Recent votes on the bill.

No vote history yet

The bill has not accumulated any surfaced votes yet.

06 · Go deeper

Go deeper than the headline read.

Included on this page

Scope and definition: disagreement over what counts as ‘sensitive, nonpublic proprietary information’ and whether that scope could be overb…

On content alone, this is a narrow administrative refinement with limited fiscal impact and low ideological salience — features that genera…

Unlocked analysis

Relative to its intended legislative type, this bill is a focused administrative directive that clearly requires the SEC to adopt data-protection policies for adviser-provided proprietary information through notice-and-…

Go beyond the headline summary with full stakeholder mapping, legislative design analysis, passage barriers, and lens-by-lens tradeoff breakdowns.

Perspective breakdownsPassage barriersLegislative design reviewStakeholder impact map
Open full analysis