The CFPB and Data Security Enforcement

Leah Schloss
WilmerHale
Contact
LinkedIn
Facebook
X
Send
Embed

The Consumer Financial Protection Bureau (CFPB) announced its intention to act as a data security regulator by releasing its first unfair, deceptive or abusive acts or practices (UDAAP) enforcement action for allegedly deceptive statements about data security practices after remaining largely silent on the topic for more than four years. The CFPB’s March enforcement action, against a small payments company, contains only a modest civil money penalty and does not require payments to customers. The language in the bureau’s action suggests that it expects regulated companies to implement certain data security processes and that it may take further enforcement action in the area of data security.

Originally published in Bloomberg BNA's Banking Report™ - June 6, 2016.

Please see full publication below for more information.

View PDF
Download PDF [211KB]
Email
Report

LOADING PDF: If there are any problems, click here to download the file.
Send Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© WilmerHale | Attorney Advertising

Written by:

WilmerHale
WilmerHale
Contact
more
less

WilmerHale on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide