Connect with us


Federal Privacy Legislation More Crucial Than Ever, Says Federal Trade Commissioner Christine Wilson

Elijah Labby



Photo of Commissioner Christine Wilson by the Federal Trade Commission

June 4, 2020 — Federal privacy legislation is more important than ever, said participants in a Brookings Institution webinar Wednesday.

Federal Trade Commissioner Christine Wilson said that privacy concerns are at an all-time high in the age of coronavirus, and the time was right for oversight of tech companies.

“I would say that the need for federal privacy legislation is greater now than it has been before,” she said. “There have been bipartisan calls for federal privacy legislation for many years … [and] the pandemic, I think, has laid bare in very stark ways the lack of … comprehensive baseline privacy legislation.”

Wilson’s comments come amid questions surrounding the use of contact-tracing technology as a measure against the coronavirus. Countries like South Korea have implemented such technologies, and late last month, Google and Apple rolled out their own supposedly anonymized contact tracing app.

Still, many experts worry that, if put in place in the United States, it could invade the privacy to which many Americans are accustomed.

Wilson said that coronavirus data has the potential to shorten the spread of the virus and return American life to normal. However, she said, this technology comes with tradeoffs that Americans will need to weigh.

“We need to ensure, not just that people will use the technologies that we’re going to try to offer them in order to help mitigate diseases and mitigate the continued outbreak of the disease, but also we need to ensure that people trust these systems, because they know that their data, if it is going to be used, will only be used for public health purposes,” she said.

Another issue that the government must consider, according to Wilson, was the impact of big tech overreach on vulnerable communities.

“This is not a new issue, that is that we need to ensure that the data is not used in a discriminatory way that harms vulnerable communities,” she said.

“If we don’t do that, and we don’t do that quickly, we will not be able to solve this crisis,” she added.

Elijah Labby was a Reporter with Broadband Breakfast. He was born in Pittsburgh, Pennsylvania and now resides in Orlando, Florida. He studies political science at Seminole State College, and enjoys reading and writing fiction (but not for Broadband Breakfast).


Biden’s Inauguration Raises Questions of New Leadership at Communications and Trade Commissions

Derek Shumway



Former Federal Communications Commission Chairman Ajit Pai

January 20, 2021 – President Joe Biden’s inauguration Wednesday will usher in a wave of new faces at the helm of many federal agencies, including the Federal Communications Commission and the Federal Trade Commission.

Following through on an announcement made last November, FCC Chairman Ajit Pai stepped down from his post Wednesday.

Pai’s last day at the FCC was preceded by one of his last actions as Chairman. On Tuesday, Pai declared in the FCC’s 14th annual broadband deployment report that the agency will continue to maintain its six year-old benchmark definition of “broadband” as 25 Megabit per second (Mbps) download speeds and 3 Mbps upload speeds.

The report concludes that the loosely-regulated telecom industry is doing enough to extend reliable broadband access to all Americans, despite FCC Democrats largely disagreeing with the claim.

FCC Commissioner Jessica Rosenworcel, who may well be named the acting chair or chair at the agency, has repeatedly argued that the FCC should adopt a higher-speed definition of broadband service. “With so many of our nation’s providers rolling out gigabit service, it’s time for the FCC to adjust its baseline upward, too,” Rosenworcel said last year, calling for new speed benchmarks requiring 100 Mbps download speeds and an upload standard higher than 3 Mbps.

Rosenworcel’s nomination for Chair is backed by the Communications Workers Union of America and the National Education Association.

Although Commissioner Geoffrey Starks has been backed by racial justice groups in the guessing game for next chairman, but having joined the Commission in 2019, he is junior to Rosenworcel. Color of Change, a civil rights advocacy group in the U.S., said it supports Starks for the role, given his advocacy for achieving racial economic equity through tech, specifically in Black communities in the past.

Transitions at the Federal Trade Commission

At the Federal Trade Commission, Chairman Joseph Simons said Tuesday he and members of his senior staff would resign on January 29. Simons offered no reason for the date of his departure. As with the FCC, the president names the chairman of independent agencies like the FTC.

FTC Commissioner Rohit Chopra, appointed by President Donald Trump in 2018 to fill an open Democratic seat, has since been nominated by Biden to serve as director of the Consumer Financial Protection Bureau. The remaining commissioners will include Democrat Rebecca Slaughter and Republicans Noah Phillips and Christine Wilson, meaning that there is room for two democrats at the agency.

The interagency transitions come as advocacy groups, led by Public Citizen, sent a letter to the FTC saying the steps required to cancel Amazon Prime “are designed to unfairly and deceptively undermine the will of the consumer,” and may violate FTC rules as well as other consumer protection laws.

Amazon’s market power is already the subject of a lengthy congressional antitrust investigation, as well as probes by the FTC, European Commission, and other regulators. The letter used a complaint from Norway’s consumer protection agency, which on Thursday asked Norwegian regulators to determine whether Amazon violated local law.

Continue Reading


Antitrust and Data Protection Emerge as Top FTC Priorities During Senate Hearing

Jericho Casper



Screenshot of Sen. Richard Blumenthal from the webcast

August 5, 2020 — The five leaders of the Federal Trade Commission testified together before a Senate panel for the first time in nearly two years on Wednesday.

The FTC is charged with maintaining a competitive marketplace and protecting consumers’ personal information, and members of the U.S. Senate Committee on Commerce, Science, and Transportation maintained that the agency has a significant role to play in the enforcement of antitrust and data privacy legislation.

Sen. Richard Blumenthal, D-Conn., reminded the FTC commissioners that tech conglomerates Facebook and Amazon are within their purview, arguing that last Wednesday’s historic House Judiciary Antitrust Subcommittee hearing brought about a greater sense of urgency to act.

This led FTC Chairman Joseph Simons to reveal that litigation against Facebook is currently ongoing.

Referencing Facebook’s acquisition of WhatsApp, Simons reported that “breaking up Facebook is an option that is definitely on the table.”

When Blumenthal asked Simons when the American public can expect antitrust action against these companies, Simons replied that the agency has been giving out warning letters.

Blumenthal suggested that a better course of action for the commission would be to introduce legislation on the books, rather than continuously sending warning letters, “which is like starting over every time,” he said.

Simons revealed that no investigation into Amazon has been started as of yet, when Blumenthal questioned whether he believed it would be necessary to depose Mark Zuckerberg and Jeff Bezos.

The hearing was further aimed at ensuring Congress had done enough to empower the FTC to ensure the agency was able to act against big tech companies.

“We believe we need more authority,” Simons said.

Other FTC commissioners requested to be granted jurisdiction over common carriers and given the ability to impose civil penalties.

The commissioners urged members of the Senate to continue enacting data privacy and security legislation.

“The FTC stands ready to enforce a national data privacy law,” said FTC Commissioner Rebecca Kelly Slaughter.

Continue Reading


Federal Trade Commission Aims to Ramp Up the Cybersecurity Efforts of Financial Institutions

Jericho Casper



Screenshot of the virtual Federal Trade Commission workshop

July 13, 2020 — The Federal Trade Commission is seeking to ramp up mandated cybersecurity efforts for financial institutions by altering the Gramm-Leach-Bliley Act’s Safeguards Rule, which requires financial institutions to develop, implement and maintain a comprehensive information security program.

After collecting public comments throughout 2019, the commission proposed certain alterations to the act, which has been left untouched for nearly two decades since being enacted in 2002.

In a virtual FTC workshop on Monday, David Lincicum, an attorney for the FTC, discussed the changes the proposed rulemaking hopes to bring about with a panel of cybersecurity professionals.

Sam Rubin, vice president at cybersecurity consulting firm The Crypsis Group, said that the two biggest threats to financial institutions currently occur through business email compromise and ransomware attacks.

The amendments the FTC has proposed aim to alleviate these issues, protecting consumers and decreasing overall risk, he said.

Current rules maintain that financial institutions must design safeguards to control risks and must regularly test the effectiveness of those safeguards.

The new proposal seeks to maintain the flexibility of the current rule, while providing more guidance about the contents of an information security program, according to Lincicum.

Under the proposed rule, financial institutions would be required to designate one qualified individual to be responsible for overseeing the program.

This individual would be responsible for ensuring that the program is constructed off of a written risk assessment.

Panelists agreed that this is an important issue currently being overlooked.

“People are not generally doing what we would consider risk assessments,” said Chris Cronin, a partner at HALOCK Security Labs. “Instead, they’ll have an auditor come in and run an audit.”

Financial institutions are not grappling with the real risks, he added.

Cronin argued what FTC regulators are aiming for is not an audit, but an evaluation of the likelihood and magnitude of possible harm.

The proposed rule calls for regularly testing and monitoring the effectiveness of institutions’ defense programs.

“Risk assessments are not something that can be done once and forgotten,” Lincicum said. “New threats arise and new vulnerabilities are discovered.”

Two further consumer protection elements that would require specific action under the proposed rule are encryption and multifactor authentication.

The proposed encryption requirement demands that all customer information held or transmitted be encrypted at all times, both in transit over external networks and at rest.

The proposed multifactor authentication requirement would require any individuals accessing customer information to go through a two-step authentication process.

Some financial institutions would be an exception from aspects of the proposed rule, including institutions that maintain the information of fewer than 5,000 consumers, which are exempt from most of the written requirements.

The participating panelists expressed a shared fear that people may call the proposed rule unreasonable, as the only benefit of implementing these programs is something not happening.

“A lot of people are going to have a hard time demonstrating reasonableness,” Cronin said.

Companies that have not experienced a breach may have a hard time understanding the benefits of conducting risk assessments, predicted panelists.

“It’s hard to explain,” Rubin said. “You don’t get a bonus for not getting hacked.”

Pablo Molina, chief information security officer at Drexel University, argued that many community members currently remain ill-informed on the issue and called for educating employees, clients and society at large.


Continue Reading


Signup for Broadband Breakfast

Get twice-weekly Breakfast Media news alerts.
* = required field