Business Guidance Resources

The Business Center provides plain-language guidance to help businesses understand their responsibilities and comply with the law.

Displaying 1 - 20 of 42

Plain Language Guidance

App Developers: Start with Security

Date

May 17, 2017

More than a thousand new apps are hitting the market each day. In this fast-moving era of entrepreneurship and creativity, is security keeping up? Apps and devices often rely on consumer data —...

apps-featres-253x173.png

apps-featres-253x173_0.png

Plain Language Guidance

Background Checks: What Employers Need to Know

Date

February 10, 2014

A joint publication of the Equal Employment Opportunity Commission and the Federal Trade Commission When making personnel decisions — including hiring, retention, promotion, and reassignment —...

pdf-0142-background-checks-what-employers-need-know.pdf (197.15 KB)

Plain Language Guidance

Businesses Must Provide Victims and Law Enforcement with Transaction Records Relating to Identity Theft

Date

May 18, 2017

The Fair Credit Reporting Act (FCRA) spells out rights for victims of identity theft, as well as responsibilities for businesses. Identity theft victims are entitled to ask businesses for a copy of...

Plain Language Guidance

Buying or selling debts? Steps for keeping data secure

Date

April 7, 2015

For savvy companies, keeping data secure is a day-to-day part of their business. They reduce the amount of sensitive information they collect in the first place, keep it secure if there’s a legitimate...

pdf-0202_buying-selling-debt.pdf (438.53 KB)

Plain Language Guidance

Careful Connections: Keeping the Internet of Things Secure

Date

September 29, 2020

Design security. Use recognized practices. Authenticate and control access . Implement secure data management. Monitor and adress security risks. Create a culture of security. Communicate. Want more...

913a_careful_connections.pdf (505.78 KB)

Plain Language Guidance

Children's Online Privacy Protection Rule: Not Just for Kids' Sites

Date

April 2, 2013

The Children’s Online Privacy Protection Rule seeks to put parents in control of what information commercial websites collect from their children online. Most companies that run websites directed to...

Plain Language Guidance

Children’s Online Privacy Protection Rule: A Six-Step Compliance Plan for Your Business

Date

June 20, 2017

When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s...

Plain Language Guidance

Collecting, Using, or Sharing Consumer Health Information? Look to HIPAA, the FTC Act, and the Health Breach Notification Rule

Date

September 14, 2023

Does your business collect, use, or share consumer health information? When it comes to privacy and security, consider the Health Insurance Portability and Accountability Act; the HIPAA Privacy...

Plain Language Guidance

Complying with COPPA: Frequently Asked Questions

Date

July 20, 2020

A GUIDE FOR BUSINESS AND PARENTS AND SMALL ENTITY COMPLIANCE GUIDE The following FAQs are intended to supplement the compliance materials available on the FTC website. In addition, you may send...

Plain Language Guidance

Complying with FTC’s Health Breach Notification Rule

Date

January 21, 2022

As more consumers use health apps and connected devices like fitness trackers, information about our health is increasingly collected and shared online. For most hospitals, doctors’ offices, and...

Plain Language Guidance

Consumer Reports: What Information Furnishers Need to Know

Date

January 13, 2021

INTRODUCTION ACCURACY Guidelines for Policies and Procedures Correct and Update Information Furnishing Specific Items DISPUTES Disputes to CRAs Disputes to Furnishers ADDITIONAL RESPONSIBILITIES...

698a_consumer_reports_2024_508.pdf (415.6 KB)

Plain Language Guidance

Consumer Reports: What Insurers Need to Know

Date

November 9, 2016

Table of Contents: Introduction Insurer Obligations Getting and Using Medical Information Adverse Action Notice Disposing of Consumer Report Information Other Considerations Non-Compliance Your...

Plain Language Guidance

Data Breach Response: A Guide for Business

Date

February 1, 2021

You just learned that your business experienced a data breach. Whether hackers took personal information from your corporate server, an insider stole customer information, or information was...

Plain Language Guidance

Data Protection, Privacy and Security: Re-Establishing Trust Between Europe and the United States (Oct. 29, 2013)

Date

January 17, 2014

Remarks by FTC Commissioner Julie Brill at the European Institute

Plain Language Guidance

Digital Copier Data Security: A Guide for Businesses

Date

July 1, 2017

Digital Copiers are Computers Today’s generation of networked multifunction devices — known as “digital copiers” — are “smart” machines that are used for more than just copying; they can do everything...

bus43-copier-data-security.pdf (342.98 KB)

Plain Language Guidance

Disposing of Consumer Report Information? Rule Tells How

Date

June 2, 2005

In an effort to protect the privacy of consumer information and reduce the risk of fraud and identity theft, a federal rule is requires businesses to take appropriate measures to dispose of sensitive...

Plain Language Guidance

Federal Trade Commission Enforcement of the U.S.-EU and U.S.-Swiss Safe Harbor Frameworks

Date

December 11, 2012

Update on the U.S.-EU Safe Harbor Framework On October 6, 2015, the European Court of Justice issued a judgment declaring invalid the European Commission’s July 26, 2000 decision on the legal adequacy...

Plain Language Guidance

Fighting Identity Theft with the Red Flags Rule: A How-To Guide for Business

Date

May 2, 2013

An estimated nine million Americans have their identities stolen each year. Identity thieves may drain accounts, damage credit, and even put medical treatment at risk. The cost to business — left with...

Plain Language Guidance

FTC Safeguards Rule: What Your Business Needs to Know

Date

May 24, 2022

As the name suggests, the purpose of the Federal Trade Commission’s Standards for Safeguarding Customer Information – the Safeguards Rule, for short – is to ensure that entities covered by the Rule...

Plain Language Guidance

FTC's Privacy Rule and Auto Dealers: FAQs

Date

January 2, 2005

The Federal Trade Commission (FTC) has developed these additional FAQs to help auto dealers comply with the Gramm-Leach-Bliley Act and the FTC’s Privacy Rule. The following questions and answers show...

bus64-ftcs-privacy-rule-and-auto-dealers-faqs.pdf (88.22 KB)

Displaying 1 - 20 of 42

Search or browse the Legal Library

Take action

Competition Matters Blog

Search or browse the Legal Library

Take action

Feature

Vision and Priorities

Technology Blog

Advice and Guidance

Take action

Servicemembers: Your tool for financial readiness

Get consumer protection basics, plain and simple

Learn how the FTC protects free enterprise and consumers

Looking for competition guidance?

Latest News

Upcoming Event

Follow us on social media

Feature

Latest Data Visualization

Featured

Meet the Chair

Business Guidance Resources

Search or browse
the Legal Library

Search or browse
the Legal Library

Servicemembers:
Your tool for financial readiness