Blackbaud avoids fine in FTC deal requiring data deletion
By 
Jeff Dale2024-02-02T19:01:00
Software company Blackbaud will be required to delete unnecessary data and boost cybersecurity as part of a proposed settlement with the Federal Trade Commission (FTC) stemming from a 2020 data breach.
The company’s poor data security allowed cybercriminals to steal sensitive data, including Social Security and bank account numbers, the FTC said in a press release Thursday.
In October, Blackbaud agreed to pay $49.5 million in a multistate settlement stemming from the data breach, about which the company allegedly failed to notify customers for two months. The company avoided further monetary penalties in reaching a settlement with the FTC but must abide by certain compliance undertakings as part of a proposed order.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefAvast to pay $16.5M in FTC case over deceptive data selling
The Federal Trade Commission proposed Avast pay $16.5 million and be prohibited from selling any browser data to settle charges the software provider sold consumer information to third parties after promising it would not.
-
News BriefN.Y. sues Citi for lax data security, failing to reimburse fraud victims
Citibank faces a lawsuit from New York Attorney General Letitia James for allegedly failing to protect and reimburse customers who lost thousands of dollars in fraudulent wire transfers.
-
News BriefBlackbaud settles with states for $49.5M over 2020 data breach
Software company Blackbaud agreed to pay $49.5 million in a multistate settlement addressing charges related to a 2020 cyberattack that exposed the personal data of approximately 13,000 consumers.
More from Regulatory Enforcement
-
ArticleFTC warns VISA and other processors that company policies may lead to debanking
Visa, Mastercard, PayPal, and Stripe have received letters from the Federal Trade Commission, warning the companies to end any policies or terms of service that may result in the “debanking” of customers.
-
ArticleDOJ makes good on corporate-friendly enforcement policy with Balt resolution
The ink was barely dry on the U.S. Department of Justice’s new corporate enforcement policy (CEP) when the agency announced it would not prosecute Balt SAS for alleged bribery violations.
-
ArticleBoA settles class-action related to its dealings with Jeffrey Epstein
Bank of America has agreed to settle a class-action lawsuit alleging know-your-customer and other failings in its dealings with convicted sex offender Jeffrey Epstein.