Skip to main content
Skip to navigation

Regulatory Enforcement

FTC ‘will not stand for’ misuse of browsing, location data

By Adrianne Appel2024-03-07T22:33:00

Companies that collect and share consumer data other than names, Social Security numbers, or other details traditionally thought of as personally identifiable information (PII) are being fingered by the Federal Trade Commission (FTC) for violating its rules.

The agency is amid a crackdown on businesses misusing browsing and location data. Any company compiling or selling geolocation data and browsing activity without consumer permission faces potential enforcement, warned the FTC’s Office of Technology in a blog post Monday.

The FTC is casting a wider net because this underlying data can provide “an intimate picture” of a person’s life, including their health conditions, financial status, sexual orientation, and religion. This type of data can also allow a person to be identified.

THIS IS MEMBERS-ONLY CONTENT

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

News Brief
FTC orders Vroom to pay $1M after it ‘sped right past compliance’

2024-07-08T14:05:00Z By Adrianne Appel

Vroom, the former online used car dealer, agreed to pay $1 million to settle allegations by the Federal Trade Commission that it didn’t abide by consumer protection laws, including providing prompt refunds.
Premium
FTC staff lay out compliance steps for noncompete ban

2024-05-14T19:33:00Z By Adrianne Appel

Staff at the Federal Trade Commission offered several steps businesses can take to comply with the agency’s upcoming ban on employee noncompete clauses.
News Brief
Mobile health apps must follow FTC breach notice rule after update

2024-04-26T18:49:00Z By Adrianne Appel

Mobile health applications and similar technologies must notify customers following a data breach or risk violating the Federal Trade Commission’s health breach notification rule.

More from Regulatory Enforcement

Article
Georgia Tech to pay $875,000 for allegations brought by compliance officers

2025-10-07T16:08:00Z By Adrianne Appel

Georgia Tech Research Corp. (GTRC) has agreed to pay $875,000 to settle allegations first raised by two compliance officers that its cybersecurity protocols violated acceptable standards for defense contractors, the Department of Justice (DOJ) said.
Article
Tractor Supply Company hit with $1.35M fine for alleged California privacy violations

2025-10-06T17:12:00Z By Adrianne Appel

Tractor Supply Company has agreed to get into compliance with California’s consumer privacy law and to pay a $1.35 million fine—the largest yet by California—to settle allegations it violated the privacy rights of customers and job applicants.
Basic Page
LuminUltra fined $685K by BIS for illegal shipment to Iran

2025-10-06T16:46:00Z By Aly McDevitt

A single $33,000 shipment to Iran triggered a six-figure penalty and years of compliance oversight for biotechnology company LuminUltra Technologies, Inc.