Privacy and Security Enforcement
When companies tell consumers they will safeguard their personal information, the FTC can and does take law enforcement action to make sure that companies live up these promises. The FTC has brought legal actions against organizations that have violated consumers’ privacy rights, or misled them by failing to maintain security for sensitive consumer information, or caused substantial consumer injury. In many of these cases, the FTC has charged the defendants with violating Section 5 of the FTC Act, which bars unfair and deceptive acts and practices in or affecting commerce. In addition to the FTC Act, the agency also enforces other federal laws relating to consumers’ privacy and security.
- Epic Games, In the Matter of ( )
- BetterHelp, Inc., In the Matter of ( )
- Epic Games, Inc., U.S. v. ( )
- GoodRx Holdings, Inc. ( )
- Chegg ( )
- Drizly, LLC., In the Matter of ( )
- BoostMyScore LLC ( )
- FTC v Kochava, Inc. ( )
- CafePress, In the Matter of ( )
- Twitter, Inc., U.S. v. ( )
- Everalbum, Inc., In the Matter of ( )
- Ascension Data & Analytics, LLC, In the Matter of ( )
- OpenX Technologies, Inc. ( )
- Kuuhuub, Inc., et al., U.S. v. (Recolor Oy) ( )
- Flo Health, Inc. ( )
- Support King, LLC (SpyFone.com), In the Matter of ( )
- Vivint Smart Home, Inc. ( )
- SkyMed International, Inc., In the Matter of ( )
- AppFolio, Inc. ( )
- Midwest Recovery Systems, LLC ( )
- FTC Seeks Comment on Business Practices of Cloud Computing Providers that Could Impact Competition and Data Security ( )
- FTC Finalizes Order Requiring Fortnite maker Epic Games to Pay $245 Million for Tricking Users into Making Unwanted Charges ( )
- FTC Announces Tentative Agenda for March 16 Open Commission Meeting ( )
- FTC to Ban BetterHelp from Revealing Consumers’ Data, Including Sensitive Mental Health Information, to Facebook and Others for Targeted Advertising ( )
- FTC and CFPB Seek Public Comment on How Background Screening May Shut Renters out of Housing ( )
- FTC Launches New Office of Technology to Bolster Agency’s Work ( )
- FTC Enforcement Action to Bar GoodRx from Sharing Consumers’ Sensitive Health Info for Advertising ( )
- FTC Finalizes Order with Ed Tech Provider Chegg for Lax Security that Exposed Student Data ( )
- FTC Marks Identity Theft Awareness Week for 2023 on January 30-February 3 ( )
- FTC Finalizes Order with Online Alcohol Marketplace for Security Failures that Exposed Personal Data of 2.5 million People ( )
- Fortnite Video Game Maker Epic Games to Pay More Than Half a Billion Dollars over FTC Allegations of Privacy Violations and Unwanted Charges ( )
- FTC Announces Tentative Agenda for December 14 Open Commission Meeting ( )
- FTC Extends Deadline by Six Months for Compliance with Some Changes to Financial Data Security Rule ( )
- FTC Brings Action Against Ed Tech Provider Chegg for Careless Security that Exposed Personal Data of Millions of Customers ( )
- FTC to Host Annual PrivacyCon Event Virtually on November 1 ( )
- FTC’s PrivacyCon 2022 Will Feature Research on Commercial Surveillance, Automated Decision Making ( )
- FTC Takes Action Against Drizly and its CEO James Cory Rellas for Security Failures that Exposed Data of 2.5 Million Consumers ( )
- FTC Extends Comment Deadline on Commercial Surveillance, Lax Data Security Practices Initiative Exploring Possible Rules ( )
- FTC Report Shows Rise in Sophisticated Dark Patterns Designed to Trick and Trap Consumers ( )
- FTC, CFPB Submit Amicus Brief Defending Consumers’ Ability to Dispute Inaccurate Items on Credit Reports ( )
- Chatbots, deepfakes, and voice clones: AI deception for sale(March 20, 2023)
- Taking a closer look at the small business credit reporting system(March 16, 2023)
- FTC says online counseling service BetterHelp pushed people into handing over health information – and broke its privacy promises(March 1, 2023)
- Tenant screening practices: The FTC wants to hear from you(February 27, 2023)
- Looking back – and looking ahead – at the FTC’s commitment to protecting consumers in the digital marketplace(February 16, 2023)
- First FTC Health Breach Notification Rule case addresses GoodRx’s not-so-good privacy practices(January 21, 2023)
- Taking the “ploy” out of employment scams(January 24, 2023)
- $245 million FTC settlement alleges Fortnite owner Epic Games used digital dark patterns to charge players for unwanted in-game purchases(December 18, 2022)
- Record-setting FTC settlements with Fortnite owner Epic Games are the latest “Battle Royale” against violations of kids’ privacy and use of digital dark patterns(December 18, 2022)
- Health app developers: Updated interactive tool can help you get started on compliance(December 6, 2022)
- Compliance deadline for certain revised FTC Safeguards Rule provisions extended to June 2023(November 15, 2022)
- How readiness can help protect veteran-owned businesses(November 10, 2022)
- Live from your laptop, it’s PrivacyCon(November 1, 2022)
- Multiple data breaches suggest ed tech company Chegg didn’t do its homework, alleges FTC(October 31, 2022)
- In time for Halloween: Our Top 10 “Nightmare on Main Street” consumer protection horror films(October 25, 2022)
- Data security forecast: Drizly with a 100% chance of far-reaching order provisions(October 24, 2022)
- FTC issues illuminating report on digital dark patterns(September 19, 2022)
- FTC forum on commercial surveillance and data security convenes soon(September 7, 2022)
- $3 million FTC settlement disapproves of Credit Karma’s deceptive “pre-approved” claims(September 1, 2022)
- FTC says data broker sold consumers’ precise geolocation, including presence at sensitive healthcare facilities(August 29, 2022)
- PrivacyCon 2021July 27, 2021
- Bringing Dark Patterns to Light: An FTC WorkshopApril 29, 2021
- Identity Theft Awareness Week Podcast: The FTC and Identity Theft Resource Center talk about identity theft and COVID-19February 5, 2021
- Identity Theft Awareness Week Facebook Live Event: The FTC and AARP discuss identity theftFebruary 4, 2021
- Identity Theft Awareness Week: The FTC and Identity Theft Resource Center partner for a LinkedIn Story “takeover”February 3, 2021
- Identity Theft Awareness Week Webinar: Ripple Effects of COVID-19-Related Identity Theft & Tips to Protect Yourself in 2021February 1, 2021
- Data To Go: An FTC Workshop on Data PortabilitySeptember 22, 2020
- PrivacyCon 2020July 21, 2020
- Information Security and Financial Institutions: FTC Workshop to Examine Safeguards RuleJuly 13, 2020
- Tax ID Theft Awareness Week Twitter Chat: Protecting Against Tax ID Theft and Government Imposter ScamsFebruary 6, 2020
- Tax ID Theft Awareness Week Webinar with the FTC and Identity Theft Resource CenterFebruary 6, 2020
- Tax ID Theft Awareness Week Tele-Town Halls with the FTC, AARP, and the U.S. Treasury DepartmentFebruary 5, 2020
- Tax ID Theft Awareness Week Tele-Town Halls with the FTC, AARP, and the U.S. Treasury DepartmentFebruary 5, 2020
- Tax ID Theft Awareness Week Webinar for Small Businesses with the FTC and IRSFebruary 4, 2020
- Tax ID Theft Awareness Week Webinar with the FTC and Identity Theft Resource CenterFebruary 3, 2020
- Tax ID Theft Awareness Webinar with the FTC, Veterans Administration and US Postal Inspection ServiceJanuary 29, 2020
- You Don't Say: An FTC Workshop on Voice Cloning TechnologiesJanuary 28, 2020
- Accuracy in Consumer Reporting WorkshopDecember 10, 2019
- The Future of the COPPA Rule: An FTC WorkshopOctober 7, 2019
- Green Lights & Red Flags: FTC Rules of the Road for BusinessAugust 15, 2019
- Concurring Statement from Commissioner Wilson Regarding BetterHelp ( )
- Dissenting Statement of Commissioner Christine S. Wilson Regarding Request to Extend Public Comment Period on Petition to Promulgate a Rule to Prohibit the Use of Certain Types of Engagement-Optimizing Design Practices on Minors ( )
- Concurring Statement of Commissioner Christine S. Wilson Regarding Epic Games, Inc. ( )
- Remarks of Chair Lina M. Khan Regarding the Presentation on Data Security at the December 2022 Open Commission Meeting ( )
- Remarks of Chief Technologist Stephanie T. Nguyen As Prepared for Delivery: PrivacyCon 2022 ( )
- Statement of Chair Lina M. Khan Joined by Commissioner Alvaro M. Bedoya In the Matter of Drizly ( )
- How (Not) to Regulate Technology: Reflections from FTC Commissioner Phillips ( )
- Statement of Commissioner Rebecca Kelly Slaughter Regarding Bureau of Consumer Protection Staff Report: “Bringing Dark Patterns to Light” ( )
- Concurring Statement of Commissioner Christine S. Wilson regarding Federal Trade Commission Report to Congress on COPPA Staffing, Enforcement and Remedies ( )
- Policy Statement of the Federal Trade Commission on Rebates and Fees in Exchange for Excluding Lower Cost Drug Products ( )
- Oral Remarks of Christine S. Wilson at Open Commission Meeting on June 16, 2022 ( )
- Statement of Commissioner Alvaro M. Bedoya Regarding Report to Congress on Combatting Online Harms Through Innovation ( )
- Statement of Commissioner Rebecca Kelly Slaughter Regarding the Commission's Report to Congress: Combatting Online Harms Through Innovation ( )
- Dissenting Statement of Commissioner Noah Joshua Phillips Regarding the Combatting Online Harms Through Innovation Report to Congress ( )
- Remarks of Chair Lina M. Khan Regarding Combatting Online Harms Through Innovation Report ( )
- Statement of Commissioner Christine S. Wilson Regarding the Combatting Online Harms Through Innovation Report ( )
- Statement of Chair Lina M. Khan Joined by Commissioner Rebecca Kelly Slaughter in the Matter of Twitter, Inc. ( )
- Policy Statement of the Federal Trade Commission on Education Technology and the Children's Online Privacy Protection Act ( )
- Remarks of Samuel Levine at Cleveland-Marshall College of Law Cybersecurity and Privacy Protection Conference ( )
- Statement of Chair Lina M. Khan Regarding Policy Statement on Education Technology and the Children's Online Privacy Protection Act ( )
- Application of Title V, Subtitle A, of the G-L-B Act, and of the Commission's Privacy Rule, to Attorneys At Law ( )
- Section 603(k): Definition of "adverse action" ( )
- Section 615(a): Required notice of adverse action based on a consumer report ( )
- Section 604(a)(3)(A): Credit transaction ( )
- Section 604(a)(2): Written authorization of consumer ( )
- Section 609: Disclosures to consumers ( )
- Section 603(g): Definition of "file" ( )
- Section 609(a)(3): Identification of recipients ( )
- Section 612: Charges for disclosures ( )
- Section 611(a): Investigation of consumer disputes by CRAs ( )
- Section 623(b): Duty of furnishers to investigate consumer disputes ( )
- Section 604(a)(3)(F): Legitimate business need ( )
- Section 603(d)(1): Definition of "consumer report" (general) ( )
- Section 616-617: Civil liability ( )
- Section 609(a)(1): Information to be disclosed ( )
- Section 604(a)(3)(C): Underwriting of insurance ( )
- Section 623(a)(1): Duty of furnishers to provide accurate information ( )
- Section 623(a)(5): Duty of furnishers to provide date of delinquency on charge-off, collection or similar accounts ( )
- Section 605(a)(4): Section 605(c) Time limits: Charge-off and collection accounts ( )
- Section 623(a)(2): Duty of furnishers to correct and update information ( )
- Combatting Online Harms Through Innovation ( )
- Consumer Sentinel Network Data Book 2021 ( )
- A Look at What ISPs Know About You: Examining the Privacy Practices of Six Major Internet Service Providers ( )
- FTC Report to Congress on Privacy and Security ( )
- Protecting Consumers During the COVID-19 Pandemic: A Year in Review ( )
- Consumer Sentinel Network Data Book 2020 ( )
- 6(b) Orders to File Special Reports to Social Media and Video Streaming Service Providers ( )
- Reports in Response to Senate Appropriations Committee Report 116-111 on the FTC’s Use of Its Authorities and the Resources Used and Needed to Protect Consumer Privacy and Security ( )
- Privacy & Data Security Update for 2019 ( )
- Consumer Sentinel Network Data Book 2019 ( )
- Privacy & Data Security Update for 2018 ( )
- Consumer Sentinel Network Data Book 2018 ( )
- FTC Informational Injury Workshop: BE and BCP Staff Perspective ( )
- Engage, Connect, Protect: The FTC’s Projects and Plans to Foster Small Business Cybersecurity - The Federal Trade Commission Staff Perspective ( )
- Mobile Security Updates: Understanding the Issues ( )
- Do Web Hosts Protect Their Small Business Customers With Secure Hosting And Anti-Phishing Technologies? The Federal Trade Commission Staff Perspective ( )
- Privacy & Data Security Update (2017): An Overview of the Commission’s Enforcement, Policy Initiatives, and Consumer Outreach and Business Guidance in the Areas of Privacy and Data Security: January 2017 – December 2017 ( )
- The Connected Cars Workshop: The Federal Trade Commission Staff Perspective ( )
- Cross-Device Tracking: A Federal Trade Commission Staff Report (January 2017) ( )
- Privacy & Data Security Update (2016) ( )
- FTC Staff Comment to the Board of Governors of the Federal Reserve System, in Docket No. R-1748, RIN 7100-AG15, Debit Card Interchange Fees and Routing ( )
- FTC Staff Letter to Department of Health and Human Services Concerning the 21st Century Cures Act: Interoperability, Information Blocking and the ONC Health IT Certification Program Rule ( )
- Comment of the Staff of the Federal Trade Commission’s Bureau of Consumer Protection: Preliminary Draft for the NIST Privacy Framework ( )
- FTC Staff Comment to the NTIA: Developing the Administration’s Approach to Consumer Privacy ( )
- Comment of the Staff of the Bureau of Consumer Protection, the Bureau of Competition, and the Bureau of Economics of the Federal Trade Commission Before the Federal Communications Commission: In the Matter of Restoring Internet Freedom ( )
- FTC Comment to the National Telecommunications & Information Administration on “Communicating IoT Device Security Update Capability to Improve Transparency for Consumers” ( )
- FTC Staff Comment to the National Telecommunications and Information Administration Regarding the Safety Working Groups “Coordinated Vulnerability Disclosure ‘Early Stage’ Template” ( )
- Comment of Jessica L. Rich, Director, Bureau of Consumer Protection, to the National Highway Traffic Safety Administration Supporting the Inclusion of Consumer Privacy and Cybersecurity Guidance in the Document “Federal Automated Vehicles Policy” ( )
- FTC Staff Comment to the NTIA: The Benefits, Challenges, and Potential Roles for the Government in Fostering the Advancement of the Internet of Things ( )
- FTC Staff Comment to the Federal Communications Commission: In the Matter of Protecting the Privacy of Customers of Broadband and Other Telecommunications Services ( )
- Comment Filed by Jessica Rich on Privacy Enforcement Implications of FCC’s Proposed Set-Top Box Rulemaking ( )
- Comment Filed by Jessica Rich, Discussing Voluntary Code of Conduct for Utilities and Third Parties Providing Consumer Energy Use Services ( )
- FTC Comment Before the FCC Concerning Proposed Cyber Security Certification Program ( )
- Brief of Amici Curiae Consumer Financial Protection Bureau and Federal Trade Commission in Support of Plaintiffs-Appellants and Reversal ( )
- FTC, CFPB Submit Amicus Brief Defending Consumers’ Ability to Dispute Inaccurate Items on Credit Reports ( )
- Sessa v. TransUnion, LLC ( )
- Henderson v. The Source for Public Data, L.P., et al. ( )
- Anthony Rivera v. JPMorgan Chase Bank, N.A. ( )
- Moran v. The Screening Pros LLC ( )
- Shamara T. King v. General Information Services, Inc. ( )
- Safeco Ins. Co. v. Burr; GEICO Gen. Ins. Co. v. Edo ( )
- Whitfield v. Radian Guaranty, Inc ( )
- Ashby v. Farmers Group, Inc ( )
- Spano v. SAFECO Insurance Co ( )
- Cole v. U.S. Capital, Inc. et al. ( )
- Willes v. State Farm Fire and Casualty Co ( )
- Rausch v. The Hartford Financial Services Group, Inc. ( )
- TRW Inc., Petitioner v. Adelaide Andrews ( )
- Toby Nelson v. Chase Manhattan Mortage Corporation, et al. ( )
- Deborah Wilson v. Rental Research Services, Inc. ( )
- Mobile Health App Interactive Tool ( )
- Mobile Health App Developers: FTC Best Practices ( )
- FTC Safeguards Rule: What Your Business Needs to Know ( )
- Complying with FTC’s Health Breach Notification Rule ( )
- Health Breach Notification Rule: The Basics for Business ( )
- Data Breach Response: A Guide for Business ( )
- Consumer Reports: What Information Furnishers Need to Know ( )
- Careful Connections: Keeping the Internet of Things Secure ( )
- Complying with COPPA: Frequently Asked Questions ( )
- Stick with Security: A Business Blog Series ( )
- Digital Copier Data Security: A Guide for Businesses ( )
- Children’s Online Privacy Protection Rule: A Six-Step Compliance Plan for Your Business ( )
- Businesses Must Provide Victims and Law Enforcement with Transaction Records Relating to Identity Theft ( )
- App Developers: Start with Security ( )
- Small Business Computer Security Basics ( )
- Conceptos básicos sobre seguridad informática para pequeños negocios ( )
- Using Consumer Reports for Credit Decisions: What to Know About Adverse Action and Risk-Based Pricing Notices ( )
- Consumer Reports: What Insurers Need to Know ( )
- Using Consumer Reports: What Employers Need to Know ( )
- Using Consumer Reports: What Landlords Need to Know ( )
- Prepared Statement of the Federal Trade Commission: Curbing COVID Cons: Warning Consumers about Pandemic Frauds, Scams, and Swindles ( )
- Prepared Statement of the Federal Trade Commission: The Urgent Need to Fix Section 13(b) of the FTC Act ( )
- Opening Statement Of Acting Chairwoman Rebecca Kelly Slaughter before the United States House Committee on Energy and Commerce Subcommittee on Consumer Protection and Commerce: The Urgent Need To Fix Section 13(B) Of The FTC Act ( )
- Prepared Statement of the Federal Trade Commission: Strengthening the Federal Trade Commission's Authority to Protect Consumers ( )
- Statement of Commissioner Noah Joshua Phillips Regarding the Hearing on Oversight of the Federal Trade Commission ( )
- Oversight of the Federal Trade Commission ( )
- Written Testimony of Commissioner Chopra Before the House Judiciary, Subcommittee on Antitrust, Commercial, and Administrative Law: “Hearing on Online Platforms and Market Power, Part 3: The Role of Data and Privacy in Competition” ( )
- Opening Statement of Commissioner Chopra Before the House Judiciary, Subcommittee on Antitrust, Commercial, and Administrative Law: “Hearing on Online Platforms and Market Power, Part 3: The Role of Data and Privacy in Competition” ( )
- Statement of Commissioner Rebecca Kelly Slaughter Before the Committee on Energy and Commerce, Subcommittee on Consumer Protection and Commerce ( )
- Statement of Commissioner Noah Joshua Phillips Before the Subcommittee on Consumer Protection and Commerce of the House Committee on Energy and Commerce ( )
- Prepared Remarks of Chairman Joseph J. Simons on “Oversight of the Federal Trade Commission: Strengthening Protections for American’s Privacy and Data Security” ( )
- Prepared Statement of the Federal Trade Commission: “Oversight of the Federal Trade Commission,” Before the Subcommittee on Consumer Protection and Commerce, United States House of Representatives Committee on Energy and Commerce ( )
- Prepared Opening Remarks of Commissioner Rohit Chopra Before the House Energy and Commerce Committee, Subcommittee on Consumer Protection and Commerce “Oversight of the Federal Trade Commission” ( )
- Oral Statement of Commissioner Christine S. Wilson as Prepared for Delivery Before the U.S. House Committee on Energy and Commerce Subcommittee on Consumer Protection and Commerce ( )
- Prepared Statement of the Federal Trade Commission Before the Subcommittee on Economic and Consumer Policy of the Oversight and Reform Committee, United States House of Representatives ( )
- Prepared Statement of the Federal Trade Commission Before the Permanent Subcommittee on Investigations of the Committee on Homeland Security and Governmental Affairs, United States Senate ( )
- Statement of Commissioner Noah Joshua Phillips Before the Subcommittee on Consumer Protection, Product Safety, Insurance, and Data Security of the US Senate Committee on Commerce, Science, and Transportation ( )
- Prepared Statement of the Federal Trade Commission: “Oversight of the FTC,” Before the Subcommittee on Consumer Protection, Product Safety, Insurance, and Data Security of the Committee on Commerce, Science, and Transportation, United States Senate ( )
- Prepared Statement of FTC Commissioner Noah Joshua Phillips before the House Energy and Commerce Committee ( )
- Prepared Statement of the Federal Trade Commission: The Fair Credit Reporting Act, Credit Bureaus, and Data Security, Before the Committee On Banking, Housing, and Urban Affairs, United States Senate ( )