Federal Trade Commission Data Security

The United States Federal Trade Commission is an independent federal agency established in 1914 by the Federal Trade Commission Act. The agency is charged with protecting consumers from misleading, fraudulent or... more +
The United States Federal Trade Commission is an independent federal agency established in 1914 by the Federal Trade Commission Act. The agency is charged with protecting consumers from misleading, fraudulent or deceptive marketing claims, as well as regulating unfair business practices that undermine the competitive marketplace.    less -
News & Analysis as of

LabMD’s Waiting Game: Lingering Questions over FTC’s Authority in Data Security Matters

A contentious legal battle over data security between the Federal Trade Commission and LabMD, a small medical testing lab, is chronicled in the latest edition of Bloomberg Businessweek. Dune Lawrence’s report raises...more

The FCC’s Privacy NPRM: A Closer Look at the Commission’s Legal Authority and Some of Its Proposals

As we have previously advised, the FCC’s proposed rulemaking to “protect the privacy of customers of broadband and other telecommunications services” (the “NPRM”) proposes sweeping changes to the ways that Internet Service...more

Judge Flunks Case Against LabMD, FTC Appeals

In March 2015, I wrote about the ongoing dispute between the FTC and LabMD, an Atlanta-based cancer screening laboratory, and looked at whether the FTC has the authority to take enforcement action over data-security practices...more

Federal Agencies Provide User-Friendly Guidance on Compliance with Data Privacy Laws

How federal privacy laws apply to mobile health applications has been an area of significant ambiguity. Recently, the Federal Trade Commission’s (FTC), the U.S. Department of Health and Human Services (HHS) Office of Civil...more

FTC Releases 2015 Annual Highlights

On April 6, the FTC released its 2015 Annual Highlights report, which is comprised of four key sections: (i) enforcement; (ii) policy; (iii) education; and (iv) stats and data. Regarding enforcement highlights in 2015, the...more

Why and How Your Business Should Protect Sensitive Customer Data

With the battle over data privacy between Apple and the Department of Justice at the forefront of the news cycle, business owners across the country are likely asking themselves: what responsibilities do I have in protecting...more

Think Before You App: FTC Releases Compliance Tools for Health App Developers

The Federal Trade Commission furthered its outreach to the mobile app developer community last week by issuing new guidance for integrating privacy and security into mobile health apps, as well as an interactive online tool...more

State AGs Upping the Ante on Health (and Other) Information Data Incidents – Expect Increased Enforcement Actions

State attorneys general (AGs) continue to emerge as major regulators of privacy, and increasingly, with respect to compromises of health-related data. Businesses concerned with U.S. customer or employee data have long...more

From Big Data to Bacon to Bots: Who will be Under FTC’s Watchful Eye Next?

At last week’s Strata + Hadoop Worldwide Big Data Conference those “in the know” about all things Silicon Valley prophesized that “data is the new bacon.” Witty comparisons aside, there is no question that big data has...more

What Net Neutrality Wrought: The FCC’s Proposed Broadband Privacy Rules

As previously promised in last year’s Open Internet Order, the Federal Communications Commission (FCC or the Commission) has released a Notice of Proposed Rulemaking (NPRM) seeking comment on proposed privacy requirements for...more

FTC Launches Study of Assessment Process for Payment Card Industry Data Security Standards

On March 7, the FTC announced a study of Payment Card Industry Data Security Standard (“PCI DSS”) assessments – the audits required of certain merchants pursuant to rules imposed by payment card brands such as Visa and...more

Advertising Law - March 2016 #3

New in False Advertising Lawsuits: Security Systems and Oatmeal - Class action complaints alleging false advertising run the gamut of products and services, and recent lawsuits filed across the country bear this...more

How to Select a Qualified Security Assessor (“QSA”)

Retailers that accept credit cards are typically required by the payment card brands to show that they are in compliance with the Payment Card Industry Data Security Standards or “PCI DSS” at least once a year. How a retailer...more

FTC Issues Inquiry into Credit Card Companies’ Compliance with Payment Card Industry Data Security Standards

On March 7, the FTC announced that it issued orders to nine companies requiring them to file a Special Report regarding their assessments of other companies’ compliance with the Payment Card Industry Data Security Standards...more

CFPB’s First-Ever Data Security Enforcement Action

Earlier this month, the Consumer Financial Protection Bureau (CFPB) made headlines by bringing its first enforcement action in the data security space. Dwolla, Inc., an Iowa-based online payment processor, was the CFPB’s...more

The CFPB Files First Consent Order Involving Data Privacy

On March 2, 2016, the Consumer Financial Protection Bureau (CFPB) filed the first consent order (Order) involving data privacy since the CFPB’s inception in 2010. The Order serves as a warning to all companies that collect,...more

Following its Settlement with Wyndham, the FTC Launches Wide Scale Inquiry Into PCI Compliance Audits

In December 2015, the Federal Trade Commission (FTC) settled a drawn-out civil action it brought against Wyndham Worldwide Corporation (Wyndham) for multiple data breaches involving cardholder data (i.e., information on...more

FTC Announces Study of PCI-DSS Assessment Companies

On Monday, March 7 the Federal Trade Commission (FTC) issued a press release announcing that it had issued Orders to nine Qualified Security Assessor (QSA) companies, which are certified to assess whether or not entities...more

FTC issues 9 orders for PCI DSS compliance assessment information

The Federal Trade Commission (FTC) issued orders to 9 companies at the beginning of this week, seeking information on how each company conducts Payment Card Industry Data Security Standards (PCI DSS) compliance assessments....more

FTC Requests Auditors’ Data on PCI Data Security Assessments

Earlier this week, the FTC issued orders to nine credit card and payment security auditors in an effort to gain insight into data security compliance auditing and its role in protecting consumers’ information and privacy....more

Advertising Law - March 2016

Tech Company Settles With FTC Over Installation of Apps Without Permission - A technology company that allegedly replaced a Web browser game with a program that installed apps on mobile devices without permission has...more

FTC And ASUS Reach Settlement Over Risk To Consumer Privacy In ASUS-Branded Routers

To date, the U.S. Federal Trade Commission has brought over 60 enforcement actions regarding company data security practices, and 2016 is already no different. On February 23, 2016, the FTC and Taiwanese computer hardware...more

Developments in Cybersecurity: Privacy Laws, Hacking Beyond Customer Data, and Communicating with Corporate Boards

I. Legal Exposure to Federal and State Privacy Laws - A. Federal Statutes and Enforcement - 1. Federal Trade Commission Act, 15 U.S.C. §§ 41-58 - The Federal Trade Commission (FTC) has emerged as the leading...more

Rep. Johnson Introduces Mobile App, Data Broker Privacy Bills

Representative Hank Johnson (D-GA) introduced two bills on February 10 targeting digital information privacy. The first, the “Application Privacy, Protection, and Security Act of 2016” (H.R. 4517) (the “Apps Act”), would...more

FTC Announces Settlement with ASUS over Insecure Routers and Cloud Services

Yesterday, the FTC announced that it had entered into a settlement agreement with Taiwan-based computer hardware manufacturer ASUSTeK Computer Inc., resolving allegations that the company failed to take reasonable steps to...more

167 Results
|
View per page
Page: of 7
JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×