Summary
Security and risk (S&R) professionals: If the US Federal Trade Commission (FTC) was not on your radar before, it should be now. Protecting consumers and consumer privacy is one of several mandates for the FTC, and the April 8, 2014 US District Court for the District of New Jersey ruling in the FTC vs. Wyndham case solidifies the FTC's scope and ability to regulate consumer data security and privacy matters. The FTC asserted that Wyndham Hotels and Resorts failed to maintain reasonable and appropriate data security measures for its customers' personal information, which violated section 5(a) of the FTC Act under which "unfair or deceptive acts or practices in or affecting commerce" are considered unlawful. Wyndham Hotels and Resorts, in turn, challenged the FTC's authority over data security and sought to dismiss the FTC's complaint — and lost. This brief examines the FTC's goals and role in data security and privacy, highlights from the FTC vs. Wyndham case, and future implications for S&R pros.
- Stay ahead of changing market and customer dynamics with the latest insights.
- Partner with expert analysts to make progress on your top initiatives.
- Get answers from trusted research using Izola, Forrester's genAI tool.