SecurTest, Inc., In the Matter of

The FTC alleged that while SecurTest initiated a Privacy Shield application in September 2017 with the U.S. Department of Commerce, the company did not complete the steps necessary to be certified as complying with the frameworks. Because it failed to complete certification, SecurTest was not a certified participant in the frameworks, despite representations to the contrary on its website. The settlement with the FTC prohibits SecurTest from misrepresenting its participation in any privacy or security program sponsored by a government, self-regulatory, or standard-setting organization, including the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield frameworks. It also must comply with reporting and compliance requirements.