The legal library gives you easy access to the FTC’s case information and other official legal, policy, and guidance documents.
Comment of the Staff of the Federal Trade Commission’s Bureau of Consumer Protection: Preliminary Draft for the NIST Privacy Framework
LightYear Dealer Technologies, LLC, In the Matter of
LightYear Dealer Technologies, LLC settled Federal Trade Commission allegations that the auto dealer software provider failed to take reasonable steps to secure consumers' data, leading to a breach that exposed the personal information of millions of consumers.
SecurTest, Inc., In the Matter of
The FTC alleged that while SecurTest initiated a Privacy Shield application in September 2017 with the U.S. Department of Commerce, the company did not complete the steps necessary to be certified as complying with the frameworks. Because it failed to complete certification, SecurTest was not a certified participant in the frameworks, despite representations to the contrary on its website. The settlement with the FTC prohibits SecurTest from misrepresenting its participation in any privacy or security program sponsored by a government, self-regulatory, or standard-setting organization, including the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield frameworks. It also must comply with reporting and compliance requirements.