Careers

Experiences

Industries

Offices

Our Firm

Pages

Our People

Updates

Practices

Warner Norcross + Judd LLP is a corporate law firm with over 230 attorneys serving clients in nine offices throughout Michigan. Among the largest law firms in Michigan, Warner works in virtually all areas of business law.

Michigan Law Firm - Warner Norcross + Judd LLP

A recent decision by the U.S. Court of Appeals for the Third Circuit—<a href="http://www2.ca3.uscourts.gov/opinarch/143514p.pdf" target="_blank" rel="noreferrer noopener"><em>FTC v. Wyndham Worldwide Corporation</em></a>—may prove to be a watershed moment for the development of federal privacy law.

contentpilot/introduction

The Federal Trade Commission is an executive agency charged with taking action against “unfair” trade practices. In the absence of a coordinated response at the federal level to the dramatic increase in data breaches in recent years, the FTC has taken it upon itself to act against poor cybersecurity practices, deeming them unfair trade practices.

core/paragraph

After the Wyndham hotel chain suffered three data breaches in less than two years, the FTC filed suit against the company. According to the complaint, Wyndham’s poor data security practices were responsible for the breaches, and resulted in millions of dollars of fraudulent charges on consumers’ credit and debit cards, as well as the transfer of hundreds of thousands of consumers’ account information to a Russian website.

Wyndham tried to get the case dismissed on the grounds that regulating cybersecurity practices is outside the FTC’s jurisdiction. The trial court denied Wyndham’s motion, and the recent decision by the Third Circuit upheld that ruling. As a consequence, companies can now expect the newly emboldened FTC to significantly expand its efforts in this area. As it does with other types of unfair business practices, the FTC is likely to make high-profile examples out of several companies in order to set a standard of care and to encourage all U.S. businesses to meet that standard.

Indeed, there are already lessons to learn from the <em>Wyndham</em> case. Some of the shortcomings identified in Wyndham’s data security practices as identified by the FTC and the courts include the failure to use firewalls at critical network points, a lack of restrictions on specific IP addresses, neglecting to encrypt customer files, and not requiring users to change their default or factory-setting passwords. While the FTC has identified these circumstances as particularly egregious, it is likely that many other companies have been equally neglectful of customer privacy. It has yet to be seen which combination of security precautions will meet the FTC’s expectations, but the time for all companies to thoughtfully re-evaluate their cybersecurity practices is clearly now.

Augmented Legality

Emerging Media and Technologies

Partner

Brian D. Wassom

Information Technology Transactions

Appeals Court Upholds Federal Trade Commission’s New Role as Privacy Cop

Warner Norcross + Judd LLP is responsible for the contents of our advertising and this website. Please read our full <a href="/privacy-policy/" aria-label="see privacy policy">privacy policy</a> available on our website. If you have any questions or comments about our website or our Privacy Policy please contact us at <a href="mailto:info@wnj.com">info@wnj.com</a> or 616.752.2000. 

Appeals Court Upholds Federal Trade Commission’s New Role as Privacy Cop

professionals