Lesson of BLU: Make the right privacy, security calls when working with service providers
By: Lesley Fair | Apr 30, 2018 1:09PM
Keep a watchful eye on your service providers. For conscientious companies, that’s Privacy & Data Security 101. It’s also a key compliance tip from the FTC’s proposed settlement with mobile device manufacturer BLU.
FTC addresses Uber’s undisclosed data breach in new proposed order
By: Lesley Fair | Apr 12, 2018 11:09AM
In its August 2017 proposed consent agreement with Uber, the FTC alleged, among other things, that the company’s unreasonable security practices resulted in a May 2014 data breach. But there’s more to the story now. According to the FTC, Uber experienced another breach in the fall of 2016 – right in the middle of the FTC’s nonpublic investigation – but didn’t disclose it to the FTC until November 2017.
Continue Reading FTC addresses Uber’s undisclosed data breach in new proposed order
By: Lesley Fair | Feb 28, 2018 8:55AM
Right now DC is the place to be for people interested in the latest on consumer privacy and data security. The FTC’s third PrivacyCon begins at 9:15 ET on Wednesday, February 28, 2018, with opening remarks from Acting Chairman Ohlhausen. Like the first two PrivacyCons, this year’s event features many of the biggest names in the research world discussing their findings.
Venmo settlement addresses availability of funds, privacy practices, and GLB
By: Lesley Fair | Feb 27, 2018 12:06PM
Advances in payment methods could end those open-wallet debates about who owes what for the pizza. But as innovative technologies change how people pay for things, established consumer protection principles apply. An FTC complaint against peer-to-peer payment service Venmo – now operated by PayPal – alleges that the company failed to disclose material information about the availability of consumers’ funds.
Continue Reading Venmo settlement addresses availability of funds, privacy practices, and GLB
By: Andrea Arias | Feb 22, 2018 11:10AM
As a business person, you know that accessing the public Wi-Fi network in an airport lounge, coffee shop, or other location can be risky. Public networks aren’t very secure – or, well, private – and it could be easy for others to intercept your confidential business or personal data. But there are times when every executive has to be out and about. So what can you do to keep your mobile data private and secure? Some people use Virtual Private Network (VPN) apps to shield traffic from their mobile devices from prying eyes on public networks.
PrivacyCon: What’s on the agenda, who’s on the agenda
By: Lesley Fair | Feb 8, 2018 10:01AM
Blind Faith, Crosby Stills Nash & Young, Humble Pie, the Traveling Wilburys. Every musical genre has its supergroup, individual talents from other groups who come together to create something even more impressive. In the consumer privacy and data security world, we think the agenda for the FTC’s PrivacyCon 2018 reads like the line-up of one of those legendary supergroups. (Minus Eric Clapton – sorry.)
Continue Reading PrivacyCon: What’s on the agenda, who’s on the agenda
So You Received a CID: FAQs for Small Businesses
By: Thomas B. Pahl, Acting Director, FTC Bureau of Consumer Protection | Jan 19, 2018 6:34PM
So you’ve received a Civil Investigative Demand (CID) from the Federal Trade Commission related to a consumer protection matter. Now what? We appreciate that it can be daunting for any company – especially a small business – and we want to be as transparent as possible about the process.
Continue Reading So You Received a CID: FAQs for Small Businesses
FTC staff offers perspectives on connected car workshop
By: Lesley Fair | Jan 10, 2018 11:01AM
Car ads used to include shorthand like 2D, AWD, and AC. Today’s car buyer is just as likely to ask about USB, GPS, and wifi. Last June, the FTC and the National Highway Traffic Safety Administration (NHTSA) hosted a workshop in Washington to discuss the types of information that connected and autonomous cars collect and the ways the data can be used.
Continue Reading FTC staff offers perspectives on connected car workshop
2017: The consumer protection year in review
By: Lesley Fair | Dec 28, 2017 4:14PM
One Direction had a hit with a song called “18,” but the FTC’s recent law enforcement and policy initiatives suggest that the agency will continue to pursue many directions in its efforts to protect consumers in ‘18. (Sorry. We’re expecting a fresh shipment of pop culture references in January.) In case you missed them – and in no particular order – here are ten FTC consumer protection topics of note from 2017.
Continue Reading 2017: The consumer protection year in review
Investigating informational injury
By: Lesley Fair | Dec 11, 2017 10:59AM
It’s a challenging trade-off. Consumer information is often at the heart of technological innovation and the benefits can be substantial. But what about the injury people may experience when information about them is misused? Informational injury is the topic under discussion at an FTC workshop on Tuesday, December 12, 2017, in Washington, DC.
By: Lesley Fair | Dec 1, 2017 8:42AM
Today’s the day for the FTC-Department of Education workshop on Student Privacy & Ed Tech. As attendees in Washington, DC, settle in before the bell rings, get ready to watch the event from your desk. A few minutes before the 9:00 ET starting time, we’ll post the webcast link from the event page. That’s where you’ll find the full agenda, speaker bios, and public comments.
Students, make your privacy or security research count
By: Lesley Fair | Nov 21, 2017 3:08PM
For college students building their resumes, that camp counselor gig is nice – but what about participating in a session at an international conference of privacy and data security experts?
Continue Reading Students, make your privacy or security research count
By: Lesley Fair | Nov 20, 2017 11:41AM
Have you done your homework on Ed Tech? The FTC and the Department of Education have published the agenda for their joint Student Privacy and Ed Tech workshop scheduled for Friday, December 1, 2017.
Lessons from FTC’s Lenovo case: Pay attention to the man in the middle
By: Lesley Fair | Sep 5, 2017 10:16AM
The Wizard of Oz was right: “Pay no attention to the man behind the curtain.” That’s because according to an FTC settlement, computer company Lenovo should have been paying attention to the “man in the middle.” In this case, the “man in the middle” was preloaded ad-injecting software that put consumers’ personal information at risk from harmful man-in-the-middle attacks.
Continue Reading Lessons from FTC’s Lenovo case: Pay attention to the man in the middle
4 Gramm-Leach-Bliley tips to take from FTC’s TaxSlayer case
By: Lesley Fair | Aug 29, 2017 12:21PM
If you or your clients are in the tax preparation field, there are three letters you should focus on. OK, I-R-S may be the first thing on your mind. But as the FTC’s proposed settlement with TaxSlayer suggests, don’t forget those other important letters: G-L-B.
Continue Reading 4 Gramm-Leach-Bliley tips to take from FTC’s TaxSlayer case
FTC says Uber took a wrong turn with misleading privacy, security promises
By: Lesley Fair | Aug 15, 2017 10:07AM
How much information does Uber have about its riders and drivers? A lot. The FTC just announced a settlement addressing charges that the company falsely claimed to closely monitor internal access to consumers’ personal information on an ongoing basis. The FTC also alleges that Uber failed to live up to its promise to provide reasonable security for consumer data.
Continue Reading FTC says Uber took a wrong turn with misleading privacy, security promises
Lead generation: When the “product” is personal data
By: Lesley Fair | Jul 5, 2017 12:42PM
There’s been a lot of talk about “ping trees” and other activities associated with the lead generation industry. The FTC’s concern is that consumers don’t get ponged in the process. A proposed settlement gives a glimpse into how one lead generation company operated and offers insights for businesses about compliance considerations when the “product” in question is consumers’ personal data.
Continue Reading Lead generation: When the “product” is personal data
Connected Cars workshop gearing up now
By: Lesley Fair | Jun 28, 2017 9:25AM
The FTC-NHTSA Connected Cars workshop is revving up – and you can watch from where you are. Experts are gathering in Washington right now to discuss the consumer privacy and security issues posed by automated and connected motor vehicles.
Connected cars: What’s on the agenda
By: Lesley Fair | Jun 20, 2017 10:36AM
Ladies and gentlemen, start your engines. The FTC and the National Highway Traffic Safety Administration have announced the agenda for their joint workshop on the consumer privacy and security implications of connected cars. If this emerging tech issue is of interest to your clients, race to Washington (within the lawful speed limit, of course) to attend the event on Wednesday, June 28, 2017.
By: Lesley Fair | Jun 7, 2017 2:13PM
With schedules changing as frequently as they do, we can’t be sure what’s on tap for tomorrow. But we already know where we’ll be on Wednesday, February 28, 2018. We’ll be at the FTC’s third PrivacyCon – a gathering of researchers, academics, industry members, consumer advocates, and government representatives talking about the privacy and security implications of emerging technologies.
