If you couldn’t make it to Washington to attend the FTC workshop Follow the Lead, watching the webcast is the next best thing – and it starts at 8:30 a.m. Eastern Time on Friday, October 30, 2015. We’re bringing together industry members, consumer advocates, researchers, law enforcers – and you – to discuss the consumer protection implications of online lead generation.
Blog Posts Tagged with Consumer Privacy
If the Commission is to attain the objectives Congress envisioned, it cannot be required to confine its road block to the narrow lane the transgressor has traveled; it must be allowed effectively to close all roads to the prohibited goal, so that its order may not be bypassed with impunity.
That’s from the Supreme Court’s 1952 decision in FTC v. Ruberoid, but it also outlines part of the job description of the Bureau of Consumer Protection’s Enforcement Division.
If you have new research you’d like to present at PrivacyCon – the FTC’s January 14, 2016, national conference to explore trends in data security and consumer privacy – we need to hear from you by midnight tonight.
The FTC has gone to court hundreds of times to stop allegedly misleading weight loss claims and Roca Labs’ “gastric bypass alternative” promises are no exception. But other parts of the complaint – including a count challenging the defendants’ use of consumer gag clauses as an unfair practice – warrant a careful reading.
What information are kids’ app developers collecting, who are they sharing it with, and what are they telling parents about their practices? The FTC staff first asked those questions in 2012. Fast forward three years, and how have things changed? According to the FTC’s Office of Technology Research and Investigation, the glass is both half-full and half-empty.
It’s called PrivacyCon and the first-of-its-kind FTC event is scheduled for January 14, 2016.
The Beatles were right: One does get by with a little help from one’s friends – but that’s not always a good thing. A partial settlement just announced by the FTC sheds light on the unsavory cooperative relationship between certain shadowy data brokers and the scammers who buy their wares for illegal purposes.
It’s a common occurrence. People looking online for a product or service – say, a loan or an educational program – find themselves on a site that asks for their personal information. The idea is that consumers will be connected with a company in that business. That exchange of information might offer an easy way to put buyers and sellers together. But sometimes the data wends its way through multiple hands before reaching the business selling what the consumer is looking for.
There are three letters every auto dealer should know about. GTO? XKE? Good guesses, but not what we had in mind.
We’re talking about GLB.
The Gramm-Leach-Bliley Act requires financial institutions to give their customers initial and annual notices about their privacy policies. If the company shares certain customer information with particular types of third parties, they also have to give customers the opportunity to opt out of sharing. The FTC’s Privacy of Consumer Financial Information Rule – friends call it the GLB Privacy Rule – explains the specifics.
It’s a question we’re asked a lot. “What happens if I’m the target of an FTC investigation involving data security?” We understand – no one wants to get that call. But we hope we can shed some light on what a company can expect.
First things first. All of our investigations are nonpublic. That means we can’t disclose whether anyone is the subject of an investigation. The sources of a data security investigation can be news reports, complaints from consumers or other companies, requests from Congress or other government agencies, or our own initiative.
In the immortal words of renowned legal scholar Yogi Berra, it’s “déjà vu all over again.” A national company is in bankruptcy court and an issue has arisen regarding the possible sale of consumers’ personal information, at least some of which was collected with the express promise, “We will not sell or rent your personally identifiable information to anyone at any time.”
As the FTC staff discussed at a seminar about consumer generated and controlled health data, people are turning to apps, devices, and websites to manage their own health information. Yesterday we talked about the contours of the compliance landscape.
With the help of innovative businesses, consumers are taking a more active role in managing their health information. How? Maybe it’s an app that monitors their exercise habits, a device that lets diabetics track glucose levels, or a site where patients with the same condition share information. In addition, people are starting to download their information into personal health records, partially because of regulatory initiatives promoting secure online access to medical data.
Is your business breaking into the latest mobile device tracking technologies? If so, remember that the FTC Act still applies. Your business’ basic legal obligation to keep its promises is just as important when using emerging technologies as it is in other contexts.
Every company takes a different approach to how it collects, maintains, and shares consumers’ personal information. Companies that want to do right by their customers are careful to explain how they handle that data. That way, consumers will know how their data will be treated.
But what happens when a company changes owners or merges with another entity? Do the representations the company made to consumers before a merger about how their information will be used apply after the merger? Are there limits on how it can be used and shared?
The FTC keeps its finger on the pulse of markets, channeling its resources to protect consumers from deceptive and unfair practices involving new technologies. A few years ago, we created the Mobile Technology Unit to help bring consumer protection into the mobile era. Staffers assist the Bureau of Consumer Protection and FTC regions with law enforcement investigations and lend their expertise to the development of consumer protection policy.
The desktop, laptop, tablet, smartphone and wireless wearable. Perhaps the only device we used yesterday that wasn’t connected to the internet was the crockpot. And it may know more than it’s telling.
Does your app collect users’ locations? Is that happening even when they’re not using the app? Savvy developers understand the importance of giving consumers a clear picture of what’s going on. The FTC has advice on making your practices more transparent.
This post about the FTC’s law enforcement action against Craig Brittain will be a little different. No bullet points parsing the nuances of complaint allegations. No tips and takeaways for savvy marketers. No admonitions about industry best practices. Given that the “industry” in question is revenge porn, the facts pretty much speak for themselves.
We’ve all been talking about the Internet of Things – the ability of everyday objects to connect to the Internet to send and receive data.