Article Directory :: Internet Marketing/Online Business Articles

Privacy & Data Security: Follow FTC Guidelines... Or Suffer The Consequences

By Chip Cooper

Subscribe to Chip Cooper's RSS feed using any feed reader!

Republish: EasyPublish
Published: 08Apr2008
Word count: 714
Viewed: 558 time(s)
Bookmark this article using any bookmark manager!
Get Free Content For Your Site

Generally, you are required to protect personal information stored on your website's server by implementing reasonable and appropriate data security measures. If you fail regarding this general requirement, you will be subject to claims from website visitors whose information has been compromised.

In addition, the Federal Trade Commission (FTC) continues to aggressively file suits for security violations under Section 5 of the FTC Act which prohibits unfair or deceptive practices.

A good example is the enforcement action brought by the FTC against LifeIsGood.com for failure to implement reasonable and appropriate data security measures. This case is significant because the FTC expects all sites to follow guidelines provided in the settlement of the case.

Lifeisgood.com's Privacy Statement

Life Is Good collected sensitive consumer information, including names, addresses, credit card numbers, credit card expiration dates, and credit card security codes through its website. Its privacy policy claimed: "We are committed to maintaining our customers' privacy. We collect and store information you share with us - name, address, credit card and phone numbers along with information about products and services you request. All information is kept in a secure file and is used to tailor our communications with you."

The FTC Claims

The FTC alleged that, contrary to its privacy policy, Life Is Good failed to provide reasonable and appropriate security for the sensitive consumer information stored on its computer network.

Specifically, the FTC alleged that Life Is Good:

1. unnecessarily risked credit card information by storing it indefinitely in clear, readable text on its network, and by storing credit card security codes;

2. failed to assess adequately the vulnerability of its Web site and corporate computer network to commonly known and reasonably foreseeable attacks, such as SQL injection attacks;

3. failed to implement simple, free or low-cost, and readily available security defenses to SQL and similar attacks;

4. failed to use readily available security measures to monitor and control connections from the network to the Internet; and

5. failed to employ reasonable measures to detect unauthorized access to credit card information. The Settlement

In its settlement with the FTC announced in a press release dated January 17, 2008, Life Is Good agreed to implement the following 5 administrative, technical, and physical safeguards in the future. These 5 safeguards are 5 excellent tips -- delivered straight from the FTC -- that you should also follow:

1. Designate an employee or employees to coordinate the information security program.

2. Identify internal and external risks to the security and confidentiality of personal information and assess the safeguards already in place.

3. Design and implement safeguards to control the risks identified in the risk assessment and monitor their effectiveness.

4. Develop reasonable steps to select and oversee service providers that handle the personal information of customers.

5. Evaluate and adjust its information-security program to reflect the results of monitoring any material changes to the company's operations, or other circumstances that may impact the effectiveness of its security program.

Conclusion

Sometimes form is as important as substance. What I mean is how you do something, and the fact that you documented it at the time you actually did it, is sometimes just as important as the fact that you did it.

The settlement safeguards in the Life Is Good case are a prime example. Simply having what you believe is a good data security program is one thing, but being able to document that you went through the steps outlined by the FTC is another.

The Life Is Good case points the way to what will work for data security. So, it's highly recommended that you set up a filing system that preserves your documentation and indicates you went through these steps, and when you did it. Then set up a tickler to remind you to go through the steps on an annual basis.

We know that there is no data security program that is 100% safe from illegal intrusions. If you have an unfortunate data security breach, it's likely the FTC or a state regulator will come knocking at your door. That's why it's so important for you to be able to produce a file that clearly shows you implemented reasonable and appropriate data security measures in accordance with the FTC guidelines.

The future of your business may depend on it!

Chip Cooper is a leading intellectual property, software, and Internet attorney who advises software and ecommerce businesses nationwide. Chip's easy and affordable online contract drafting service coordinates website contracts such as Terms of Use, Privacy Policy, Subscription, Membership, and SaaS agreements. Visit Chip's http://www.digicontracts.com site and download his FREE report, "12 Sure-Fire Ways Your Website Can Get You Sued".

Bookmark this article using any bookmark manager! Subscribe to Chip Cooper's RSS feed using any feed reader!

EasyPublish™ this article - publishers click here

More articles by Chip Cooper

Free Report!
Ten Essential Secrets Of Article Marketing ... Grab Your Free
Copy Now:




We respect your privacy.

Need Content?
Regular Top Quality Content for your Blog, Ezine or Website ...
Delivered Direct,
For Free!
Click For Details


Arts & Entertainment
Automotive
Business - General
Computers & Technology
Finance & Investment
Food & Drink
Health & Fitness
Home & Family
Internet Marketing/Online Business
Legal
Pets & Animals
Politics & Government
Reference & Education
Religion & Faith
Self-Improvement/Motivation
Social
Sports & Recreation
Travel & Leisure
Writing & Speaking

More internet marketing articles:

  • Understanding Why Keywords Research Is Vital To A SEO Expert (Dirik Hameed)
    There are many strategies and tactics that are used by SEO companies in order to help a website improve their visibility online but keyword research is often seen as the most important and this article explains why.

  • The Most Awful Mistake an Internet Marketer Could Possibly Make (JD Farrell)
    Many folks hope to get into Internet Marketing. Besides, all you actually need to start making money online with IM are a laptop or computer and an Internet connection. It's a relatively easy field to dive into and this is the reason why it is rife with minefields and holes to fall into.

  • The Right Seo Company (Alem Vel)
    This article is about choosing the right seo company and what to look for.

  • How I Ruined A Little Old Lady's Day (Dave Blakeman)
    How to avoid ruining your marketing campaign... and upsetting old ladies!

  • Which Affiliate Marketing Products For Your Niche Internet Business? (Michael Tasker)
    When searching for an affiliate marketing product for your niche internet business to offer prospects and customers should you seek out a digital or a physical one? The answer depends upon which niche you are marketing to, what the prospects are used to buying, whether the product fits into the usual price range plus also the size of commission earned.

  • Make Money Through The Internet By Learning How To Start An Online Business From Home (Moira Wight)
    To make money through the internet involves learning new skills and learning how to start an online business from home. The first step in this process involves choosing a niche area to serve. Read on to find out more about how you can do this successfully.

  • Online Business At Home - What Are The Necessary Business Building Tools To Use? (Jeff Schuman)
    Being the owner of an online business at home is smart for anyone these days. However, if you are going to own your own business then you need to be made aware of the necessary business building tools that will help you make it successful.

  • Easy Ways To Successfully Market Your Articles (Andrew Gallop)
    You really couldn't believe just how powerful articles are when it comes to marketing a business online. However, believing is about seeing, and you can see the true results of article marketing with the use of tips like these. These tips can give you a heads up in the way you can promote your business effectively and efficiently, with the use of a few great articles.

  • What The Experts Know About Article Marketing! (Andrew Gallop)
    An article is something that appears so simple to the untrained eye, but requires such complex techniques to build and market properly. The methods used are varied and change drastically across the web, depending on the site or company. However, some of the same core principles are always used and reused when you want success and they will be discussed here.

  • Benefits Of Online Classified Ads To Your Business (Pat Thompson)
    Unlike in the past when they only appeared on the newspapers, classified ads are now a common sight on the internet. Numerous sites are actually dedicated to classified ads, and these sites provide business people with a chance to promote their products and services cost effectively. What's more interesting is the fact that most of these online sites offer their service for free. This aspect of online classifieds has made them extremely popular.

We Automatically Distribute Articles
To Thousands Of Publishers And Web Sites:
Submit Article
All content is viewed and used by you at your own risk and we do not warrant the accuracy or reliability of any of the information. The views expressed are those of the individual contributing authors and not necessarily those of this web site, or its owner, Takanomi Limited.
  
Copyright © 2012 Takanomi Ltd. Company no. 5629683. All rights reserved. | Privacy | Legal | Contact Information