If your company gets background information on prospective employees, it’s likely you’re covered by the Fair Credit Reporting Act. Before you get a background screening report, the law requires that you make certain disclosures and get a prospective employee’s authorization. Is it time for a FCRA compliance check?
Blog Posts Tagged with Privacy and Security
It’s wise to maintain a reasonable speed: 1) when you’re behind the wheel; or 2) when you’re preparing your public comments for the June 28, 2017, workshop on connected cars hosted by the FTC and the National Highway Traffic Safety Administration. That’s why we’re extending the deadline for your feedback to Monday, May 1st.
You often hear the FTC described as America’s top cop on the privacy beat. We’re not the only agency working on privacy and data security issues, of course, but we have the broadest jurisdiction. And for more than 20 years, we have used it thoughtfully and forcefully to protect consumers even as new products and services emerge and evolve.
Commercial cross-border data flows continue to grow in our internet-enabled economy. These data flows, often involving personal data, support innovative new business services and consumer products. At the same time, they raise questions of how to protect privacy across borders. Various mechanisms help both businesses and consumers with this challenge. One in which the FTC plays a key role is the EU-U.S. Privacy Shield.
In the 80s, the appropriately-named group The Cars asked the musical question, “Who’s gonna drive you home?” The FTC and the National Highway Traffic Safety Administration are hosting a workshop on June 28, 2017, to examine the consumer privacy and security implications of automated and connected motor vehicles. The questions won’t be of the musical variety, but we have a list of them and welcome your input.
On the first day of law school, students learn the Latin maxim Res ipsa loquitor – “The thing speaks for itself.” Pardon the inaccurate translation, but in the case of the FTC’s Annual Highlights, we think Tabula crustum ipsa loquitor – “The pie chart speaks for itself.” In other words, the statistical recap of the past year tells an important story about what the FTC is doing to protect consumers and promote competition.
If you make promises to consumers, you must honor them – and if you sign an FTC order, you must comply with it. That’s the lesson learned by Upromise, a college savings website, which must pay $500,000 for violating its existing FTC order.
Not familiar with Upromise? It offers free memberships that allow consumers to earn cash-back rewards on certain purchases. Members can direct those rewards to a college savings plan or to pay down student loans.
Businesses often ask: “If I comply with the NIST Cybersecurity Framework, am I complying with what the FTC requires?” Maybe you read our blog explaining how the NIST Cybersecurity Framework relates to the FTC’s work on data security? Now, check out this related video featuring Andrea Arias, an attorney in the FTC’s Division of Privacy and Identity Protection.
The scene is the west coast, the subject is emerging technology, and AI is in the title. But it’s not the 2001 Spielberg sci fi film.
Financial technology remains a hot topic for consumers, offering the possibilities of increased convenience and access to financial services at a lower cost. As part of its FinTech Forum series, the FTC continues to promote public discussion of the ways in which innovative FinTech services – many provided by non-banks and technology companies within the FTC’s jurisdiction – can benefit consumers and the potential issues for stakeholders to keep in mind.
Today kicks off National Consumer Protection Week, but what the FTC does to protect consumers is only part of the story. We also work hard to help small business get down to business. Here are just a few examples of what we’re doing to protect your business from deceptive practices.
When internet fraudsters mimic a legitimate business to trick consumers into giving out their personal information, it’s called phishing. It’s not just a problem for consumers, but for the companies the scammers are impersonating too. The FTC has long provided advice to consumers about steps they can take to avoid phishing scams. But what should you do if customers contact your company upset that they responded to a phishing email from a scammer impersonating your legitimate business?
Take me out to the ballgame.
Take me out with the crowd.
Buy me some peanuts and crackerjack
And sound statistics to give us feedback.
Phishing emails can harm businesses whose identities are spoofed. Don’t want that to happen to your business? Read the new Staff Perspective from our Office of Technology, Businesses Can Help Stop Phishing and Protect their Brands Using Email Authentication.
To facilitate the transfer of data, many U.S. companies that do business internationally participate in the Asia-Pacific Economic Cooperation Cross-Border Privacy Rules (CBPR) system. It’s voluntary, of course, but if companies say they participate, that representation – like other objective claims – must be truthful. That’s the lesson of three proposed settlements just announced by the FTC.
Need to verify an applicant's employment or income history? Checking to see if a candidate has a criminal history or civil judgments?
If you get information from a company that compiles it so you can make eligibility determinations, you must comply with the Fair Credit Reporting Act (FCRA). That means no double-dipping. If you get a consumer report for one purpose, don’t use it for a different purpose.
Consumers have bought more than 11 million internet-connected Vizio televisions since 2010. But according to a complaint filed by the FTC and the New Jersey Attorney General, consumers didn’t know that while they were watching their TVs, Vizio was watching them. The lawsuit challenges the company’s tracking practices and offers insights into how established consumer protection principles apply to smart technology.
Tax season has just begun, but tax identity thieves already are posting their “gone phishin’” signs: fake emails designed to trick companies into handing over their employees’ personal information. To help small businesses avoid the hook, the FTC and the IRS are hosting a free Tax Identity Theft Awareness Week webinar on Wednesday, February 1, at 4 p.m. EST.
We recently saw a fellow diner reach across the cafeteria soup station until splat! His phone fell out of his shirt pocket and into the minestrone. But even before he ladled out his soup-logged smartphone, he reached into his bag and took out his tablet. As consumers have come to rely on multiple devices, companies are using technologies to connect a consumer’s activity across those devices – smartphones, tablets, desktops, laptops, and more.
Protecting consumers’ privacy and personal data has long been a priority at the FTC. Over the years, we’ve helped millions of identity theft victims recover from that crime. We created the National Do Not Call Registry to limit unwanted telemarketing, and we continue to fight illegal robocalls. And we’ve brought more than sixty cases against companies that didn’t take reasonable steps to protect people’s data.