Privacy and Security
For many companies, collecting sensitive consumer and employee information is an essential part of doing business. If you collect this type of information, it’s your legal responsibility to take steps to properly secure or dispose of that data.
Consumer Privacy
What information about customers or potential customers may a company collect? What about health-related information or online behavioral advertising – the practice of tracking someone’s activities to deliver targeted advertising? Find out more about what companies need to know about consumer privacy.
Children’s Privacy
The Children’s Online Privacy Protection Act (COPPA) gives parents control over what information websites can collect from their kids. If you run a website designed for kids or have a website geared to a general audience but collect information from someone you know is under 13, you must comply with COPPA’s two main requirements. For answers to particular questions, call the COPPA Compliance Hotline at 202-326-3140.
Credit Reporting
Does your business use credit reports to evaluate customers’ credit worthiness? Do you consult credit reports when considering evaluating applications for jobs, leases, and insurance? Here is information about your responsibilities when using, reporting, and disposing of information in those credit reports.
Data Security
Many companies keep sensitive personal information about customers or employees in their files. Having a sound security plan in place can help you meet your legal requirements to protect that sensitive information.
Gramm-Leach-Bliley Act
The Gramm-Leach-Bliley Act requires financial institutions – companies that offer consumers financial products or services like loans, financial or investment advice, or insurance – to explain their information-sharing practices to their customers and to safeguard sensitive data. The GLB Act includes the Financial Privacy Rule, the Model Form Rule, the Safeguards Rule, and provisions that prohibit pretexting.
