Privacy and Security Enforcement
When companies tell consumers they will safeguard their personal information, the FTC can and does take law enforcement action to make sure that companies live up these promises. The FTC has brought legal actions against organizations that have violated consumers’ privacy rights, or misled them by failing to maintain security for sensitive consumer information, or caused substantial consumer injury. In many of these cases, the FTC has charged the defendants with violating Section 5 of the FTC Act, which bars unfair and deceptive acts and practices in or affecting commerce. In addition to the FTC Act, the agency also enforces other federal laws relating to consumers’ privacy and security.
- Microsoft Corporation, U.S. v. ( )
- Ring, LLC ( )
- Amazon Alexa ( )
- Edmodo, LLC, U.S. v. ( )
- Facebook, Inc., In the Matter of ( )
- Easy Healthcare Corporation, U.S. v. ( )
- Epic Games, In the Matter of ( )
- BetterHelp, Inc., In the Matter of ( )
- Epic Games, Inc., U.S. v. ( )
- GoodRx Holdings, Inc. ( )
- Chegg ( )
- Drizly, LLC., In the Matter of ( )
- BoostMyScore LLC ( )
- FTC v Kochava, Inc. ( )
- CafePress, In the Matter of ( )
- Twitter, Inc., U.S. v. ( )
- Everalbum, Inc., In the Matter of ( )
- Ascension Data & Analytics, LLC, In the Matter of ( )
- OpenX Technologies, Inc. ( )
- Kuuhuub, Inc., et al., U.S. v. (Recolor Oy) ( )
- FTC Will Require Microsoft to Pay $20 million over Charges it Illegally Collected Personal Information from Children without Their Parents’ Consent ( )
- FTC Says Ring Employees Illegally Surveilled Customers, Failed to Stop Hackers from Taking Control of Users' Cameras ( )
- FTC and DOJ Charge Amazon with Violating Children’s Privacy Law by Keeping Kids’ Alexa Voice Recordings Forever and Undermining Parents’ Deletion Requests ( )
- FTC Says Ed Tech Provider Edmodo Unlawfully Used Children’s Personal Information for Advertising and Outsourced Compliance to School Districts ( )
- FTC Files Brief in Jones v. Google in Support of Appeals Court Ruling that COPPA Does Not Preempt Plaintiffs’ State Privacy Claims ( )
- FTC Proposes Amendments to Strengthen and Modernize the Health Breach Notification Rule ( )
- FTC Warns About Misuses of Biometric Information and Harm to Consumers ( )
- Ovulation Tracking App Premom Will be Barred from Sharing Health Data for Advertising Under Proposed FTC Order ( )
- FTC Announces Tentative Agenda for May 18 Open Commission Meeting ( )
- FTC to Host Cloud Computing Discussion on May 11 ( )
- FTC to Host Virtual Panel Discussion on Cloud Computing, Extends Comment Deadline ( )
- FTC Proposes Blanket Prohibition Preventing Facebook from Monetizing Youth Data ( )
- FTC Chair Khan and Officials from DOJ, CFPB and EEOC Release Joint Statement on AI ( )
- FTC Seeks Comment on Business Practices of Cloud Computing Providers that Could Impact Competition and Data Security ( )
- FTC Finalizes Order Requiring Fortnite maker Epic Games to Pay $245 Million for Tricking Users into Making Unwanted Charges ( )
- FTC Announces Tentative Agenda for March 16 Open Commission Meeting ( )
- FTC to Ban BetterHelp from Revealing Consumers’ Data, Including Sensitive Mental Health Information, to Facebook and Others for Targeted Advertising ( )
- FTC and CFPB Seek Public Comment on How Background Screening May Shut Renters out of Housing ( )
- FTC Launches New Office of Technology to Bolster Agency’s Work ( )
- FTC Enforcement Action to Bar GoodRx from Sharing Consumers’ Sensitive Health Info for Advertising ( )
- $20 million FTC settlement addresses Microsoft Xbox illegal collection of kids’ data: A game changer for COPPA compliance(June 5, 2023)
- Out of the mouths of babes? FTC says Amazon kept kids’ Alexa voice data forever – even after parents ordered deletion(May 31, 2023)
- Not home alone: FTC says Ring’s lax practices led to disturbing violations of users’ privacy and security(May 31, 2023)
- Oh no, you don’t, Edmodo: FTC sues ed tech company for violating school kids’ privacy(May 21, 2023)
- Health Breach Notification Rule: FTC wants your insights into proposed changes(May 18, 2023)
- Body language? FTC issues policy statement about misuse of biometric data(May 18, 2023)
- FTC says Premom shared users’ highly sensitive reproductive health data: Can it get more personal than that?(May 15, 2023)
- FTC says student loan debt “relief” companies relieved consumers of money, but didn’t live up to promises(May 8, 2023)
- Chatbots, deepfakes, and voice clones: AI deception for sale(March 20, 2023)
- Taking a closer look at the small business credit reporting system(March 16, 2023)
- FTC says online counseling service BetterHelp pushed people into handing over health information – and broke its privacy promises(March 1, 2023)
- Tenant screening practices: The FTC wants to hear from you(February 27, 2023)
- Looking back – and looking ahead – at the FTC’s commitment to protecting consumers in the digital marketplace(February 16, 2023)
- First FTC Health Breach Notification Rule case addresses GoodRx’s not-so-good privacy practices(January 21, 2023)
- Taking the “ploy” out of employment scams(January 24, 2023)
- $245 million FTC settlement alleges Fortnite owner Epic Games used digital dark patterns to charge players for unwanted in-game purchases(December 18, 2022)
- Record-setting FTC settlements with Fortnite owner Epic Games are the latest “Battle Royale” against violations of kids’ privacy and use of digital dark patterns(December 18, 2022)
- Health app developers: Updated interactive tool can help you get started on compliance(December 6, 2022)
- Compliance deadline for certain revised FTC Safeguards Rule provisions extended to June 2023(November 15, 2022)
- How readiness can help protect veteran-owned businesses(November 10, 2022)
- PrivacyCon 2021July 27, 2021
- Bringing Dark Patterns to Light: An FTC WorkshopApril 29, 2021
- Identity Theft Awareness Week Podcast: The FTC and Identity Theft Resource Center talk about identity theft and COVID-19February 5, 2021
- Identity Theft Awareness Week Facebook Live Event: The FTC and AARP discuss identity theftFebruary 4, 2021
- Identity Theft Awareness Week: The FTC and Identity Theft Resource Center partner for a LinkedIn Story “takeover”February 3, 2021
- Identity Theft Awareness Week Webinar: Ripple Effects of COVID-19-Related Identity Theft & Tips to Protect Yourself in 2021February 1, 2021
- Data To Go: An FTC Workshop on Data PortabilitySeptember 22, 2020
- PrivacyCon 2020July 21, 2020
- Information Security and Financial Institutions: FTC Workshop to Examine Safeguards RuleJuly 13, 2020
- Tax ID Theft Awareness Week Twitter Chat: Protecting Against Tax ID Theft and Government Imposter ScamsFebruary 6, 2020
- Tax ID Theft Awareness Week Webinar with the FTC and Identity Theft Resource CenterFebruary 6, 2020
- Tax ID Theft Awareness Week Tele-Town Halls with the FTC, AARP, and the U.S. Treasury DepartmentFebruary 5, 2020
- Tax ID Theft Awareness Week Tele-Town Halls with the FTC, AARP, and the U.S. Treasury DepartmentFebruary 5, 2020
- Tax ID Theft Awareness Week Webinar for Small Businesses with the FTC and IRSFebruary 4, 2020
- Tax ID Theft Awareness Week Webinar with the FTC and Identity Theft Resource CenterFebruary 3, 2020
- Tax ID Theft Awareness Webinar with the FTC, Veterans Administration and US Postal Inspection ServiceJanuary 29, 2020
- You Don't Say: An FTC Workshop on Voice Cloning TechnologiesJanuary 28, 2020
- Accuracy in Consumer Reporting WorkshopDecember 10, 2019
- The Future of the COPPA Rule: An FTC WorkshopOctober 7, 2019
- Green Lights & Red Flags: FTC Rules of the Road for BusinessAugust 15, 2019
- Policy Statement of the Federal Trade Commission on Biometric Information and Section 5 of the Federal Trade Commission Act ( )
- Remarks of Chair Khan at the May 2023 Open Commission Meeting ( )
- Statement of Commissioner Alvaro M. Bedoya in the Matter of Facebook, Inc. ( )
- Joint Statement on Enforcement Efforts Against Discrimination and Bias in Automated Systems ( )
- Concurring Statement from Commissioner Wilson Regarding BetterHelp ( )
- Dissenting Statement of Commissioner Christine S. Wilson Regarding Request to Extend Public Comment Period on Petition to Promulgate a Rule to Prohibit the Use of Certain Types of Engagement-Optimizing Design Practices on Minors ( )
- Concurring Statement of Commissioner Christine S. Wilson Regarding Epic Games, Inc. ( )
- Remarks of Chair Lina M. Khan Regarding the Presentation on Data Security at the December 2022 Open Commission Meeting ( )
- Remarks of Chief Technologist Stephanie T. Nguyen As Prepared for Delivery: PrivacyCon 2022 ( )
- Statement of Chair Lina M. Khan Joined by Commissioner Alvaro M. Bedoya In the Matter of Drizly ( )
- How (Not) to Regulate Technology: Reflections from FTC Commissioner Phillips ( )
- Statement of Commissioner Rebecca Kelly Slaughter Regarding Bureau of Consumer Protection Staff Report: “Bringing Dark Patterns to Light” ( )
- Concurring Statement of Commissioner Christine S. Wilson regarding Federal Trade Commission Report to Congress on COPPA Staffing, Enforcement and Remedies ( )
- Policy Statement of the Federal Trade Commission on Rebates and Fees in Exchange for Excluding Lower Cost Drug Products ( )
- Statement of Commissioner Alvaro M. Bedoya Regarding Report to Congress on Combatting Online Harms Through Innovation ( )
- Remarks of Chair Lina M. Khan Regarding Combatting Online Harms Through Innovation Report ( )
- Statement of Commissioner Rebecca Kelly Slaughter Regarding the Commission's Report to Congress: Combatting Online Harms Through Innovation ( )
- Dissenting Statement of Commissioner Noah Joshua Phillips Regarding the Combatting Online Harms Through Innovation Report to Congress ( )
- Oral Remarks of Christine S. Wilson at Open Commission Meeting on June 16, 2022 ( )
- Statement of Commissioner Christine S. Wilson Regarding the Combatting Online Harms Through Innovation Report ( )
- Application of Title V, Subtitle A, of the G-L-B Act, and of the Commission's Privacy Rule, to Attorneys At Law ( )
- Section 603(k): Definition of "adverse action" ( )
- Section 615(a): Required notice of adverse action based on a consumer report ( )
- Section 604(a)(3)(A): Credit transaction ( )
- Section 604(a)(2): Written authorization of consumer ( )
- Section 609: Disclosures to consumers ( )
- Section 611(a): Investigation of consumer disputes by CRAs ( )
- Section 623(b): Duty of furnishers to investigate consumer disputes ( )
- Section 603(g): Definition of "file" ( )
- Section 609(a)(3): Identification of recipients ( )
- Section 612: Charges for disclosures ( )
- Section 603(d)(1): Definition of "consumer report" (general) ( )
- Section 604(a)(3)(F): Legitimate business need ( )
- Section 616-617: Civil liability ( )
- Section 609(a)(1): Information to be disclosed ( )
- Section 604(a)(3)(C): Underwriting of insurance ( )
- Section 623(a)(2): Duty of furnishers to correct and update information ( )
- Section 623(a)(1): Duty of furnishers to provide accurate information ( )
- Section 623(a)(5): Duty of furnishers to provide date of delinquency on charge-off, collection or similar accounts ( )
- Section 605(a)(4): Section 605(c) Time limits: Charge-off and collection accounts ( )
- Combatting Online Harms Through Innovation ( )
- Consumer Sentinel Network Data Book 2021 ( )
- A Look at What ISPs Know About You: Examining the Privacy Practices of Six Major Internet Service Providers ( )
- FTC Report to Congress on Privacy and Security ( )
- Protecting Consumers During the COVID-19 Pandemic: A Year in Review ( )
- Consumer Sentinel Network Data Book 2020 ( )
- 6(b) Orders to File Special Reports to Social Media and Video Streaming Service Providers ( )
- Reports in Response to Senate Appropriations Committee Report 116-111 on the FTC’s Use of Its Authorities and the Resources Used and Needed to Protect Consumer Privacy and Security ( )
- Privacy & Data Security Update for 2019 ( )
- Consumer Sentinel Network Data Book 2019 ( )
- Privacy & Data Security Update for 2018 ( )
- Consumer Sentinel Network Data Book 2018 ( )
- FTC Informational Injury Workshop: BE and BCP Staff Perspective ( )
- Engage, Connect, Protect: The FTC’s Projects and Plans to Foster Small Business Cybersecurity - The Federal Trade Commission Staff Perspective ( )
- Mobile Security Updates: Understanding the Issues ( )
- Do Web Hosts Protect Their Small Business Customers With Secure Hosting And Anti-Phishing Technologies? The Federal Trade Commission Staff Perspective ( )
- Privacy & Data Security Update (2017): An Overview of the Commission’s Enforcement, Policy Initiatives, and Consumer Outreach and Business Guidance in the Areas of Privacy and Data Security: January 2017 – December 2017 ( )
- The Connected Cars Workshop: The Federal Trade Commission Staff Perspective ( )
- Cross-Device Tracking: A Federal Trade Commission Staff Report (January 2017) ( )
- Privacy & Data Security Update (2016) ( )
- FTC Staff Comment to the Board of Governors of the Federal Reserve System, in Docket No. R-1748, RIN 7100-AG15, Debit Card Interchange Fees and Routing ( )
- FTC Staff Letter to Department of Health and Human Services Concerning the 21st Century Cures Act: Interoperability, Information Blocking and the ONC Health IT Certification Program Rule ( )
- Comment of the Staff of the Federal Trade Commission’s Bureau of Consumer Protection: Preliminary Draft for the NIST Privacy Framework ( )
- FTC Staff Comment to the NTIA: Developing the Administration’s Approach to Consumer Privacy ( )
- Comment of the Staff of the Bureau of Consumer Protection, the Bureau of Competition, and the Bureau of Economics of the Federal Trade Commission Before the Federal Communications Commission: In the Matter of Restoring Internet Freedom ( )
- FTC Comment to the National Telecommunications & Information Administration on “Communicating IoT Device Security Update Capability to Improve Transparency for Consumers” ( )
- FTC Staff Comment to the National Telecommunications and Information Administration Regarding the Safety Working Groups “Coordinated Vulnerability Disclosure ‘Early Stage’ Template” ( )
- Comment of Jessica L. Rich, Director, Bureau of Consumer Protection, to the National Highway Traffic Safety Administration Supporting the Inclusion of Consumer Privacy and Cybersecurity Guidance in the Document “Federal Automated Vehicles Policy” ( )
- FTC Staff Comment to the NTIA: The Benefits, Challenges, and Potential Roles for the Government in Fostering the Advancement of the Internet of Things ( )
- FTC Staff Comment to the Federal Communications Commission: In the Matter of Protecting the Privacy of Customers of Broadband and Other Telecommunications Services ( )
- Comment Filed by Jessica Rich on Privacy Enforcement Implications of FCC’s Proposed Set-Top Box Rulemaking ( )
- Comment Filed by Jessica Rich, Discussing Voluntary Code of Conduct for Utilities and Third Parties Providing Consumer Energy Use Services ( )
- FTC Comment Before the FCC Concerning Proposed Cyber Security Certification Program ( )
- Jones v. Google ( )
- Brief of Amici Curiae Consumer Financial Protection Bureau and Federal Trade Commission in Support of Plaintiffs-Appellants and Reversal ( )
- FTC, CFPB Submit Amicus Brief Defending Consumers’ Ability to Dispute Inaccurate Items on Credit Reports ( )
- Sessa v. TransUnion, LLC ( )
- Henderson v. The Source for Public Data, L.P., et al. ( )
- Anthony Rivera v. JPMorgan Chase Bank, N.A. ( )
- Moran v. The Screening Pros LLC ( )
- Shamara T. King v. General Information Services, Inc. ( )
- Safeco Ins. Co. v. Burr; GEICO Gen. Ins. Co. v. Edo ( )
- Whitfield v. Radian Guaranty, Inc ( )
- Ashby v. Farmers Group, Inc ( )
- Spano v. SAFECO Insurance Co ( )
- Cole v. U.S. Capital, Inc. et al. ( )
- Willes v. State Farm Fire and Casualty Co ( )
- Rausch v. The Hartford Financial Services Group, Inc. ( )
- TRW Inc., Petitioner v. Adelaide Andrews ( )
- Toby Nelson v. Chase Manhattan Mortage Corporation, et al. ( )
- Deborah Wilson v. Rental Research Services, Inc. ( )
- Mobile Health App Interactive Tool ( )
- Mobile Health App Developers: FTC Best Practices ( )
- FTC Safeguards Rule: What Your Business Needs to Know ( )
- Complying with FTC’s Health Breach Notification Rule ( )
- Health Breach Notification Rule: The Basics for Business ( )
- Data Breach Response: A Guide for Business ( )
- Consumer Reports: What Information Furnishers Need to Know ( )
- Careful Connections: Keeping the Internet of Things Secure ( )
- Complying with COPPA: Frequently Asked Questions ( )
- Stick with Security: A Business Blog Series ( )
- Digital Copier Data Security: A Guide for Businesses ( )
- Children’s Online Privacy Protection Rule: A Six-Step Compliance Plan for Your Business ( )
- Businesses Must Provide Victims and Law Enforcement with Transaction Records Relating to Identity Theft ( )
- App Developers: Start with Security ( )
- Small Business Computer Security Basics ( )
- Conceptos básicos sobre seguridad informática para pequeños negocios ( )
- Using Consumer Reports for Credit Decisions: What to Know About Adverse Action and Risk-Based Pricing Notices ( )
- Consumer Reports: What Insurers Need to Know ( )
- Using Consumer Reports: What Employers Need to Know ( )
- Using Consumer Reports: What Landlords Need to Know ( )
- Opening Statement Of Acting Chairwoman Rebecca Kelly Slaughter before the United States House Committee on Energy and Commerce Subcommittee on Consumer Protection and Commerce: The Urgent Need To Fix Section 13(B) Of The FTC Act ( )
- Prepared Statement of the Federal Trade Commission: Curbing COVID Cons: Warning Consumers about Pandemic Frauds, Scams, and Swindles ( )
- Prepared Statement of the Federal Trade Commission: The Urgent Need to Fix Section 13(b) of the FTC Act ( )
- Prepared Statement of the Federal Trade Commission: Strengthening the Federal Trade Commission's Authority to Protect Consumers ( )
- Oversight of the Federal Trade Commission ( )
- Statement of Commissioner Noah Joshua Phillips Regarding the Hearing on Oversight of the Federal Trade Commission ( )
- Opening Statement of Commissioner Chopra Before the House Judiciary, Subcommittee on Antitrust, Commercial, and Administrative Law: “Hearing on Online Platforms and Market Power, Part 3: The Role of Data and Privacy in Competition” ( )
- Written Testimony of Commissioner Chopra Before the House Judiciary, Subcommittee on Antitrust, Commercial, and Administrative Law: “Hearing on Online Platforms and Market Power, Part 3: The Role of Data and Privacy in Competition” ( )
- Oral Statement of Commissioner Christine S. Wilson as Prepared for Delivery Before the U.S. House Committee on Energy and Commerce Subcommittee on Consumer Protection and Commerce ( )
- Statement of Commissioner Rebecca Kelly Slaughter Before the Committee on Energy and Commerce, Subcommittee on Consumer Protection and Commerce ( )
- Statement of Commissioner Noah Joshua Phillips Before the Subcommittee on Consumer Protection and Commerce of the House Committee on Energy and Commerce ( )
- Prepared Remarks of Chairman Joseph J. Simons on “Oversight of the Federal Trade Commission: Strengthening Protections for American’s Privacy and Data Security” ( )
- Prepared Statement of the Federal Trade Commission: “Oversight of the Federal Trade Commission,” Before the Subcommittee on Consumer Protection and Commerce, United States House of Representatives Committee on Energy and Commerce ( )
- Prepared Opening Remarks of Commissioner Rohit Chopra Before the House Energy and Commerce Committee, Subcommittee on Consumer Protection and Commerce “Oversight of the Federal Trade Commission” ( )
- Prepared Statement of the Federal Trade Commission Before the Subcommittee on Economic and Consumer Policy of the Oversight and Reform Committee, United States House of Representatives ( )
- Prepared Statement of the Federal Trade Commission Before the Permanent Subcommittee on Investigations of the Committee on Homeland Security and Governmental Affairs, United States Senate ( )
- Statement of Commissioner Noah Joshua Phillips Before the Subcommittee on Consumer Protection, Product Safety, Insurance, and Data Security of the US Senate Committee on Commerce, Science, and Transportation ( )
- Prepared Statement of the Federal Trade Commission: “Oversight of the FTC,” Before the Subcommittee on Consumer Protection, Product Safety, Insurance, and Data Security of the Committee on Commerce, Science, and Transportation, United States Senate ( )
- Prepared Statement of FTC Commissioner Noah Joshua Phillips before the House Energy and Commerce Committee ( )
- Prepared Statement of the Federal Trade Commission: The Fair Credit Reporting Act, Credit Bureaus, and Data Security, Before the Committee On Banking, Housing, and Urban Affairs, United States Senate ( )