Drizly data security to be monitored for 20 years under FTC order
By 
Adrianne Appel2023-01-11T20:38:00
Online alcohol retailer Drizly and its chief executive officer agreed to data security requirements and to be assessed by an independent monitor for up to 20 years as part of a final settlement with the Federal Trade Commission over a data breach that impacted 2.5 million consumers, the FTC announced Tuesday.
The FTC had proposed the measures and filed a complaint against Drizly in October, alleging the company and CEO James Cory Rellas knew about security vulnerabilities and ignored them.
Customer emails, addresses, phone numbers, and other data were unnecessarily stored by the company on an insecure platform with gaps that allowed hackers to gain access, the FTC alleged.
Related articles
-
ArticleFTC places restrictions on CEO in Drizly enforcement proposal
The Federal Trade Commission announced a tentative settlement with online alcohol delivery platform Drizly and its chief executive officer regarding a data breach affecting 2.5 million consumers and the alleged lax security that allowed it to happen.
-
News BriefFCA fines Monzo digital bank $28 million for AML, KYC failures
Britain’s Financial Conduct Authority has fined the online bank Monzo the equivalent of more than $28 million for failing to properly collect customer information and protect against financial crimes. The move is the latest in a series of efforts by British authorities to combat chronic money laundering and other crimes ...
-
PremiumDiscover, in allowing misclassification problem to fester, pushed compliance aside
Federal banking regulators have laid the blame for Discover Financial Services charging merchants $1 billion in excessive credit card fees over 17 years squarely at the feet of company executives.
More from Regulatory Enforcement
-
News BriefCFPB drops $95M enforcement action against Navy Federal, without explanation
The Consumer Financial Protection Bureau has dropped a $95 million enforcement action against Navy Federal Credit Union, the latest regulatory pullback by the agency under President Donald Trump.
-
ArticleFCA drops ‘naming and shaming’ approach – except in ‘exceptional circumstances’
The UK’s financial regulator has had a rough ride over the past couple of years as its strategy to “name and shame” firms it opened investigations into was widely slammed by the industry and lawmakers over concerns that companies could be unfairly maligned.
-
News BriefDOJ targets $14.6B in health care fraud with focus on transnational crime
Emerging enforcement priorities of the U.S. Department of Justice’s health care fraud division align with the Trump administration’s emphasis on prosecuting transnational criminal organizations and ending opioid trafficking.