Show Hide Section Navigation

    Filter Cases

  • {[]}

Produced by the IAPP Westin Research Center

The FTC Casebook collects and provides access to more than 180 privacy and data security enforcement actions—full-text searchable, tagged, indexed and annotated.


Sorry, No Matching Results Found

Recent FTC Privacy News

Ohlhausen To RSA: Be Reasonable; That’s All

(Apr 22, 2015) The Federal Trade Commission (FTC) is a privacy regulator, sure. But it’s not out to get the good guys trying to do the right thing. It’s primary concern is making sure organizations are keeping the privacy promises they make to consumers. That was how Federal Trade Commissioner Maureen Ohlhausen kicked off her keynote address at the IAPP’s preconference session at RSA, “Engineering Privacy: Why Security Isn’t Enough.” Read More

FTC v. Wyndham: Has the FTC Declared Unreasonable Security “Unfair”?

(Apr 10, 2015) In the latest installment of the FTC v. Wyndham case, the Third Circuit Court of Appeals is set to determine the scope of the agency’s authority over unfair trade practices in the arena of cybersecurity. On March 27, the Federal Trade Commission (FTC) and Wyndham Worldwide Corp. filed supplemental briefings in the Third Circuit presenting arguments on whether the FTC has declared that unreasonable cybersecurity practices are unfair, and, assuming the FTC has not determined that unreasonable cybe... Read More

The FCC’s “Net Neutrality” Order Part 2: What Will Happen and What Will Be the Effect on the Internet Ecosystem

(Apr 2, 2015) In this follow-up post, William Baker, CIPP/US, writes for Privacy Tracker about the implications and next steps we can expect to see as the Federal Communications Commission (FCC) net neutrality order plays out. In part one, Baker outlined the history and important aspects of the order, and in this post, he offers insight on potential changes for consumers, ISPs, online services such as video-streaming sites, backbone/backhaul services and the Federal Trade Commission. “Whether the FCC has successfully threaded its way through the legal minefield outlined by the Brand X and Verizon cases, the Communications Act and the Administrative Procedures Act will ultimately be decided by the courts. The legal issues are a law professor’s dream,” Baker writes. Read More

Featured Cases

    Nomi Technologies, Inc.

    (Apr 23, 2015) Nomi Technologies, a company whose technology allows retailers to track consumers’ movements through their stores, agreed to settle FTC charges that it misled consumers with promises that it would provide an in-store mechanism for consumers to opt out of tracking and that consumers would be informed when locations were using Nomi’s tracking services. Read More

    Bayview Solutions, LLC

    (Apr 13, 2015) According to the FTC, Bayview Solutions, LLC posted unencrypted documents online containing consumers’ names, addresses, credit card numbers, bank account numbers, and amounts the consumers allegedly owed. The sensitive data was posted on a website geared for debt buyers, sellers, and other members of the debt collection industry, but accessible to anyone with an internet connection. Read More

    TES Franchising, LLC

    (Apr 7, 2015) FTC filed a complaint against TES Franchising, LLC, and American International Mailing, Inc. alleging the companies’ websites indicated they were currently certified under the U.S.-EU Safe Harbor Framework and U.S.-Swiss Safe Harbor Framework, when in fact their certifications had lapsed years earlier. Read More

    American International Mailing, Inc.

    (Apr 7, 2015) American International Mailing, Inc. self-certified compliance with the U.S.-EU Safe Harbor Framework in 2006 but failed to renew its self-certification from 2010-2015, despite continuing to state in its privacy statements that it abides by the Safe Harbor Principles. The FTC charged AIM with one count of deceptive trade practices under Section 5. Read More

    Craig Brittain, In the Matter of

    (Jan 29, 2015) The FTC’s complaint against Craig Brittain alleged that he used deception to acquire and post intimate images of women, then referred them to another website he controlled, where they were told they could have the pictures removed if they paid hundreds of dollars. Read More

    Sitesearch Corporation, Doing Business As LeapLab

    (Dec 23, 2014) LeapLab, a data broker operation, allegedly sold the sensitive personal information of hundreds of thousands of consumers – including Social Security and bank account numbers – to scammers who debited millions from their accounts. Read More

    TRUSTe, Inc.

    (Nov 17, 2014) TRUSTe, Inc., a major provider of privacy certifications for online businesses, agreed to settle Federal Trade Commission charges that it deceived consumers about its recertification program for company’s privacy practices, as well as perpetuated its misrepresentation as a non-profit entity. TRUSTe seals assure consumers that businesses’ privacy practices are in compliance with specific privacy standards like the Children’s Online Privacy Protection Act (COPPA) and the U.S.-EU Safe Harbor Framework. Read More

    Yelp Inc.

    (Sep 17, 2014) Yelp is a free service that allows users to read and write reviews of local businesses. In its complaint, the FTC claimed that Yelp violated the Children’s Online Privacy Protection Act Rule (“COPPA Rule”) by failing to implement a functional age-screening mechanism during the registration process for the app. Read More


Contact the IAPP Westin Research Center at