Tag: Data security
Eleventh Circuit Assumes FTC’s Data Security Enforcement Authority, But Mandates Specificity for FTC Orders
On June 6, 2018, the United States Court of Appeals for the Eleventh Circuit issued a landmark ruling in LabMD v. Federal Trade Commission. While the Eleventh Circuit impliedly held that the Federal Trade Commission (“FTC”) has authority to take enforcement action against companies whose unfair practices lead to data security incidents that pose… Read More
Customer Data Collection: GDPR Changes Everything.
Beginning on May 25, 2018, companies which process the personal data of European Union residents will be expected to comply with the General Data Protection Regulation, or GDPR. Even companies located in the United States are subject to this regulation, and violating its terms may result in class actions and hefty fines. If your company… Read More
GDPR D-Day: If Not Prepared, It Could Cost You Europe
GDPR D-Day: May 25, 2018. If you are not prepared, the results could cost you Europe. In the U.S., we’ve had a pretty business-friendly approach to consumer data protection. And while federal and state authorities have their respective consumer protection laws, there is no single federal law that clearly defines U.S. policy on how consumer… Read More
State Attorneys General Tell Congress: “Back-Off Our Data Breach Authority”
Every week, we learn about new data breaches affecting consumers across the country. Federal government workers and retirees recently received the unsettling news that a breach compromised their personal information, including social security numbers, job history, pay, race, and benefits. Amid a host of other public relations issues, the Trump organization recently discovered a potential… Read More
Why the FTC Can Go After Companies For Insufficient Data Security Allegations
FTC seems more confident than ever in its authority to go after companies with insufficient data security measures. As of January 2015, FTC had settled 53 data-security enforcement actions, and FTC Senior Attorney Lesley Fair expects that number to increase. Not everyone is sanguine about FTC’s enforcement efforts. Companies targeted for administrative action complain… Read More
Federal Trade Commission Checks Out Mobile Shopping Apps
In August, the Federal Trade Commission (“FTC”) released a staff report concerning mobile shopping applications (“apps”). FTC staff reviewed some of the most popular apps consumers utilize to comparison shop, collect and redeem deals and discounts, and pay in-store with their mobile devices. This new report focused on shopping apps offering price comparison, special… Read More
Google/Viacom Win Video Privacy Protection Act Case – Common Sense Finally Emerges
In an important decision in a federal court case in New Jersey, In Re Nickelodeon Privacy Litigation, Google and Viacom obtained a dismissal of a claim against them under the Video Privacy Protection Act (“VPPA”). The decision narrows the scope of who can be liable under the VPPA and what information is within the… Read More
Data Privacy Day
By Michelle Cohen, CIPP-US On January 28th, in an effort raise awareness of privacy and data privacy, the United States, Canada and 27 countries of the European Union celebrate International Data Privacy Day. Many organizations use Data Privacy Day as an opportunity to educate their employees and stakeholders about privacy-related topics. With the recent, high-profile data… Read More
Industry, Members of Congress Take Action on FTC Process
As the Federal Trade Commission (“FTC”) continues to flex its consumer protection muscles by bringing numerous administrative lawsuits, industry and members of Congress are questioning whether there is a level playing field that allows companies to properly defend themselves against FTC charges. Or, as some say, does the FTC have the “home court advantage” in… Read More
IFRAH Law
