This Note discusses the recent surge in patron data collected by casino player tracking systems and the increasing need to protect the confidentiality and security of patron Personally Identifiable Information (PII) through the implementation of federal privacy legislation. Part I discusses the rise of the casino player tracking database systems. Part II explains and defines PII. Part III outlines current U.S. privacy laws applicable to the casino industry, describes casino liability standards, and examines patron remedies for a potential breach in the security of patron PII. Part IV assesses the strengths and weaknesses of U.S. privacy laws applicable to the casino industry, compares those laws to European and Canadian data security laws, and describes how the application of international privacy law in the U.S. will improve the current casino industry data security laws. Finally, Part V suggests that the current industry-based U.S. privacy laws are ineffective, and a nationwide standard, as exemplified in European and Canadian privacy law, should be implemented in the U.S. to ensure appropriate patron PII data security in the U.S. casino industry.