Company agrees to report to FTC for 10 years for alleged student data lapses
By 
Adrianne Appel2025-12-02T21:52:00
A tech company that stores student information for schools has agreed to implement a data security program and report to the Federal Trade Commission (FTC) for 10 years, after security failures led to data for 10 million students being breached.
Illuminate Education collects and stores personal student data, including birth dates and health conditions, on behalf of schools. A vendor allegedly alerted Illuminate in January 2020 that its network had big security flaws, but the company failed to address them, according to the FTC complaint.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefFTC’s $60 million Instacart case puts misleading fees in the spotlight
The U.S. Federal Trade Commission settled with grocery delivery giant Instacart over accusations of deceptive billing and subscription practices.
-
News BriefFTC orders GoDaddy to upgrade cybersecurity defenses following three breaches
The Federal Trade Commission has ordered web hosting company GoDaddy to implement a “robust” information security program following at least three data breaches that the agency said were aided by lax cybersecurity measures.
-
News BriefRobinhood to pay $45M fine to settle securities law violations by broker-dealers
Robinhood, a disruptive force in the market for Main Street investors but also a serial offender of securities laws, will pay a total of $45 million to settle numerous violations of SEC rules and regulations by two of its broker-dealers.
More from Regulatory Enforcement
-
ArticleFormer TD branch manager admits laundering $92 million for gift card bribes
A former TD Bank assistant branch manager in New York was instrumental in helping a $653 million drug money laundering operation, known as “David’s Network,” wash dirty money through the bank, the U.S. Department of Justice announced Tuesday.
-
ArticleTeledyne fined $1.5M for supplying obsolete parts to Navy
Teledyne will pay more than $1.5 million to settle allegations it supplied electronic parts to the Navy that deviated from specifications, a violation of the False Claims Act (FCA). But its cooperation with prosecutors earned it a credit, according to the U.S. Department of Justice (DOJ).
-
ArticleTungston rod importer pays $54.4M to settle DOJ tariff fraud allegations
An industrial products distributor has agreed to pay $54.4 million to settle allegations, first made by a whistleblower, that it evaded tariffs and violated the federal False Claims Act.