Drizly data security to be monitored for 20 years under FTC order
By 
Adrianne Appel2023-01-11T20:38:00
Online alcohol retailer Drizly and its chief executive officer agreed to data security requirements and to be assessed by an independent monitor for up to 20 years as part of a final settlement with the Federal Trade Commission over a data breach that impacted 2.5 million consumers, the FTC announced Tuesday.
The FTC had proposed the measures and filed a complaint against Drizly in October, alleging the company and CEO James Cory Rellas knew about security vulnerabilities and ignored them.
Customer emails, addresses, phone numbers, and other data were unnecessarily stored by the company on an insecure platform with gaps that allowed hackers to gain access, the FTC alleged.
Related articles
-
ArticleFTC places restrictions on CEO in Drizly enforcement proposal
The Federal Trade Commission announced a tentative settlement with online alcohol delivery platform Drizly and its chief executive officer regarding a data breach affecting 2.5 million consumers and the alleged lax security that allowed it to happen.
-
PremiumAssessing the impact of the DOJ’s monitorship policy six months in
It has been nearly six months now since the Department of Justice’s (DOJ) Criminal Division released its memorandum on the selection of compliance monitors. This article provides a critical analysis of the monitorships that received early terminations, those that remain in place, and the broader compliance lessons they impart.
-
News BriefBinance’s Changpeng Zhao receives presidential pardon from Trump
The founder of crypto exchange Binance, Changpeng Zhao, received a pardon from President Donald Trump. This pardon comes almost two years after Zhao signed a plea agreement and was sentenced to a four-month prison sentence.
More from Regulatory Enforcement
-
ArticleOCC drops $10M fine against former Wells Fargo risk officer fingered in “fake accounts” scandal
A former Wells Fargo risk officer previously ordered to pay $10 million by the Department of the Treasury’s Office of the Comptroller of the Currency (OCC) for her alleged role in the bank’s “fake accounts” scandal is completely off the hook, according to an OCC consent order issued Tuesday.
-
ArticleNY auto insurers on the hook for $19M for cybersecurity violations
Eight auto insurers failed to meet the requirements of New York’s cybersecurity regulations during widespread online attacks in 2021 and will pay $19 million under consent orders with the New York State Department of Financial Services (NYDFS).
-
News BriefCanada to launch new federal office targeting financial crime and fraud
Canada is creating a new federal office to lead efforts against financial crime. The initiative marks the government’s most significant move yet to modernize its approach to fraud and money laundering.