Data: Minimization: FTC Cites Company For Failing To Delete Information It No Longer Needed

Fox Rothschild LLP
Contact

Fox Rothschild LLPData minimization is coming to the United States.

The Federal Trade Commission cited failure to delete information which is no longer needed as a failure to implement reasonable protection.

In its complaint, the FTC alleges that InfoTrax and its former CEO Mark Rawlins failed to use reasonable, low-cost, and readily available security protections to safeguard the personal information it maintained on behalf of its clients. This includes failing to inventory and delete personal information it no longer needed.

As part of the proposed settlement with the FTC, InfoTrax is prohibited from collecting, selling, sharing or storing personal information unless it implements an information security program that would address the security failures identified in the complaint. This includes assessing and documenting internal and external security risks; implementing safeguards to protect personal information from cybersecurity risks; and testing and monitoring the effectiveness of those safeguards.

Details from the Federal Trade Commission.

[View source.]

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Fox Rothschild LLP | Attorney Advertising

Written by:

Fox Rothschild LLP
Contact
more
less

Fox Rothschild LLP on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide