Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

FTC Issues Largest Fine Ever Under COPPA

On February 27, the Federal Trade Commission announced a settlement with video social networking app TikTok, in which the company agreed to pay $5.7 million for violating the Children’s Online Privacy Protection Act (COPPA), the largest fine issued under the law to date. According to the FTC, the company was aware that children under 13 were using the app but failed to obtain...

Cybersecurity and Data Privacy review and update: Looking back on 2018 and planning ahead for 2019

From the implementation of the GDPR to the passage of the CCPA, the year 2018 proved to be a monumental one for cybersecurity and data privacy. Regulators from around the world responded to devastating, large-scale cyber-attacks, and a desire for their citizens to have more control over their data, by passing a wide range of regulations aimed at protecting consumer information. These...

The FTC is Watching When Your Children’s Toys are Listening

In his article published by The Hill, Eversheds Sutherland (US) Partner Michael Bahar provides insight on the recent Federal Trade Commission (FTC) update to its Children’s Online Privacy Protection Act (COPPA) compliance plan. The update is the latest in a series of regulatory moves to bring attention to the serious cybersecurity and data privacy issues latent in the ever-expanding...

FTC Reviews Security Updates Practices of Eight Mobile Device Manufacturers

The Federal Trade Commission is requiring eight mobile device manufacturers to provide the FTC with information about how they determine to issue security updates to address vulnerabilities in smartphones, tablets, and other mobile devices. The FTC plans to use these filings to study policies, procedures, and practices used to notify customers and determine whether to provide security...

FTC Orders Data Security Auditors to Provide PCI DSS Assessment Data

On March 7, 2016, the Federal Trade Commission (“FTC”) ordered nine data security auditing companies to provide detailed information within 45 days about how they conduct assessments of companies when measuring their compliance with the Payment Card Industry Data Security Standards (“PCI DSS”).  The FTC announced it is specifically seeking information about “the assessment process...

« Older Entries