Blog

If your business is covered by the FTC’s Gramm-Leach Bliley Safeguards Rule, an amendment to the Rule that requires covered companies to report certain data breaches and other security events to the FTC is now in effect – and we’ve made it easy for you to report.

Some say the car a person drives can say a lot about them. As cars get “connected,” this turns out to be truer than many people might have realized. While connectivity can let drivers do things like play their favorite internet radio stations or unlock their car with an app, connected cars can also collect a lot of data about people. This data could be sensitive—such as biometric information or location—and its collection, use, and disclosure can...

It was Shakespeare who said, “Once more unto the breach.” The FTC’s goal is never more unto the breach, but until companies keep health data secure and private, we’ll continue to update and enforce the Health Breach Notification Rule to protect consumers and keep up with the digital revolution in health information. Benefited by insights from researchers, industry members, legislators, and consumers who responded to our call for public comments, the FTC just finished a head-to-toe HBNR check-up. The just-announced Final Rule makes it clear that health apps and similar technologies are covered and expands what covered entities must tell consumers if there’s been a breach of their data. How will the new rule affect your business?

The FTC’s Tech Summit on AI 1 convened three panels that highlighted different layers of the AI tech stack: hardware and infrastructure, data and models, and consumer-facing applications. This third Quote Book is focused on consumer-facing applications. This post outlines the purpose of the quote book, a summary of the panel, and relevant topics and actions raised by the FTC. Purpose of the quote book A key component of the FTC’s work is to...

The FTC’s Tech Summit on AI [1] convened three panels that each highlighted different layers of the AI tech stack: hardware and infrastructure, data and models, and front-end user applications. This second Quote Book is focused on data and models. This post outlines the intended purpose of the quote book, a summary of the panel, and relevant topics and actions raised by the FTC. Purpose of the quote book A key component of the FTC’s AI work is to...

For more than two decades, the FTC has been bringing enforcement actions for violations of national consumer protection laws due to companies’ poor security practices. These poor practices have included failure to encrypt sensitive data, storing credentials in source code, failing to test for common vulnerabilities, and failure to use multi-factor authentication, among others. To remedy these practices, the orders the FTC has obtained in these...

Today, the FTC announced four winners of the Voice Cloning Challenge, which was launched to address the present and emerging harms of artificial intelligence, or “AI”-enabled voice cloning technologies. The FTC received submissions from a wide range of individuals, teams, and organizations. The winners are outlined in the press release and on the Challenge website. The agency called for ideas that can be implemented during at least one of the...

Is the person who contacted your employee really from the IRS or Social Security Administration? And what about those calls and texts to consumers claiming to be from your company? The FTC’s new Trade Regulation Rule on Impersonation of Government and Businesses takes effect today and a just-released Data Spotlight underscores the Rule’s critical importance to consumers and businesses.

Scams that impersonate well-known businesses and government agencies are consistently among the top frauds reported to the FTC’s Consumer Sentinel Network. [1] In 2023, data from the FTC alone show more than 330,000 reports of business impersonation scams and nearly 160,000 reports of government impersonation scams. [2] That amounts to nearly half the frauds reported directly to the agency. [3] Combined, reported losses to these impersonation...

The FTC’s Office of Technology (“OT”) was founded in 2023 with the purpose of strengthening and supporting law enforcement investigations and actions, advising and engaging with FTC staff and the Commission on policy and research initiatives, and engaging with the public and relevant experts to understand trends and to advance the Commission’s work. 24 Members of the International Competition Network (ICN) are committed to continuing to...