A letter signed by more than 40 organizations representing retailers, restaurants and other businesses – including the National Retail Federation, National Restaurant Association and Food Marketing Institute – was sent to Congressional leaders on Thursday, stating that legislation to address data breaches should cover all entities that handle sensitive information.

The letter states that “a single federal law applying to all breached entities would ensure clear, concise and consistent notices to all affected consumers regardless of where they live or where the breach occurs.”

The letter warns of increasing cyber threats, with criminals many times based out of Eastern Europe, and cites breaches impacting JPMorgan Chase, Apple's iCloud, and Department of Homeland Security contractor USIS.

“Congress should act to standardize reasonable, timely notification of sensitive data breaches whenever and wherever they occur,” according to the letter.