Sorry, you need to enable JavaScript to visit this website.
Skip to main content

If the Commission is to attain the objectives Congress envisioned, it cannot be required to confine its road block to the narrow lane the transgressor has traveled; it must be allowed effectively to close all roads to the prohibited goal, so that its order may not be bypassed with impunity.

That’s from the Supreme Court’s 1952 decision in FTC v. Ruberoid, but it also outlines part of the job description of the Bureau of Consumer Protection’s Enforcement Division. 

In recent decades, the FTC has solidified its role as a law enforcement agency, bringing hundreds of fraud cases and establishing favorable law in courts across the country. But the sharp increase in litigation posed a challenge: ensuring compliance with hundreds of new orders. In 2005, BCP asked its Enforcement Division to shoulder that responsibility.

How did the Division go about managing that massive task? Step #1: It developed a state-of-the-art database that tracks the status of orders and sends reminders of important dates – for example, when compliance reports are due. Step #2: The Division created new processes to use the database to monitor compliance. Since July 2010, BCP has put those tools to work to complete compliance reviews for close to 400 defendants.

But it’s not just about data. The Enforcement Division assigns experienced compliance attorneys to each completed case. They are responsible for ensuring that defendants file timely compliance reports. With that information in hand, they evaluate the reports and conduct a stem-to-stern compliance review to make sure the order is having its intended effect. If the report leaves them with questions, they follow up with the defendants for more information. Sometimes the result is a full investigation of possible order violations.

Orders entered in BCP cases cover a broad range of subjects and the Enforcement Division has experience with them all. Take data security or privacy as an example. Many orders in those cases require an initial third-party assessment of the company’s practices. Among other things, the Enforcement Division compliance attorney carefully reviews that third-party assessment. The attorney often consults experts in the field and may contact both the defendant and the person who conducted the assessment for clarification and additional information. If the assessment is still lacking, the attorney asks for more data or even a new assessment. This process continues until we’re satisfied the defendant is in full compliance. If that resolution can’t be reached, the Enforcement Division may open a contempt investigation.

The process, however, doesn’t have to be adversarial. In our experience, most defendants willingly provide the additional information we need to verify compliance or take the steps necessary to bring their practices into line with what the order requires. The process often has the side benefit of helping defendants understand their obligations. This give-and-take can reduce the risk of inadvertent order violations.




It is your choice whether to submit a comment. If you do, you must create a user name, or we will not post your comment. The Federal Trade Commission Act authorizes this information collection for purposes of managing online comments. Comments and user names are part of the Federal Trade Commission’s (FTC) public records system, and user names also are part of the FTC’s computer user records system. We may routinely use these records as described in the FTC’s Privacy Act system notices. For more information on how the FTC handles information that we collect, please read our privacy policy.

The purpose of this blog and its comments section is to inform readers about Federal Trade Commission activity, and share information to help them avoid, report, and recover from fraud, scams, and bad business practices. Your thoughts, ideas, and concerns are welcome, and we encourage comments. But keep in mind, this is a moderated blog. We review all comments before they are posted, and we won’t post comments that don’t comply with our commenting policy. We expect commenters to treat each other and the blog writers with respect.

  • We won’t post off-topic comments, repeated identical comments, or comments that include sales pitches or promotions.
  • We won’t post comments that include vulgar messages, personal attacks by name, or offensive terms that target specific people or groups.
  • We won’t post threats, defamatory statements, or suggestions or encouragement of illegal activity.
  • We won’t post comments that include personal information, like Social Security numbers, account numbers, home addresses, and email addresses. To file a detailed report about a scam, go to

We don't edit comments to remove objectionable content, so please ensure that your comment contains none of the above. The comments posted on this blog become part of the public domain. To protect your privacy and the privacy of other people, please do not include personal information. Opinions in comments that appear in this blog belong to the individuals who expressed them. They do not belong to or represent views of the Federal Trade Commission.

Get Business Blog updates