Following a public comment period, the Federal Trade Commission has approved final orders with three companies resolving allegations that they deceived consumers by misrepresenting their participation in the Asia-Pacific Economic Cooperation (APEC) Cross-Border Privacy Rules (CBPR) system.
The APEC CBPR system facilitates privacy-respecting data transfers between APEC member economies through a voluntary, enforceable mechanism, which certifies companies as being compliant with APEC CBPR program requirements. Like the EU-U.S. and Swiss-U.S. Privacy Shield frameworks that also facilitate privacy-respecting data transfers between different countries, the APEC CBPR system is backstopped by FTC enforcement.
In separate complaints, the FTC charged that Sentinel Labs, Inc., which provides endpoint protection software to enterprise customers, SpyChatter, Inc., marketer of the SpyChatter private message app, and Vir2us, Inc., which distributes cyber security software, falsely represented in their online privacy policies that they participated in the APEC CBPR system. Sentinel Labs also falsely claimed that it was a participant in a TRUSTe privacy program, according to the FTC complaint.
Under the terms of the settlements with the FTC, the three companies are prohibited from misrepresenting their participation, membership or certification in any privacy or security program sponsored by a government or self-regulatory or standard-setting organization.
The Federal Trade Commission works to promote competition, and protect and educate consumers. You can learn more about consumer topics and file a consumer complaint online or by calling 1-877-FTC-HELP (382-4357). Like the FTC on Facebook, follow us on Twitter, read our blogs and subscribe to press releases for the latest FTC news and resources.
Juliana Gruenwald Henderson
Office of Public Affairs