{"id":14786,"date":"2014-12-22T12:46:12","date_gmt":"2014-12-22T11:46:12","guid":{"rendered":"https:\/\/owncloud.com\/?p=14786"},"modified":"2020-10-06T10:12:59","modified_gmt":"2020-10-06T10:12:59","slug":"begins-now-fcc-policy-data-protection","status":"publish","type":"post","link":"https:\/\/owncloud.com\/de\/blogs\/begins-now-fcc-policy-data-protection\/","title":{"rendered":"And so it Begins: Now the FCC is Policy data Protection"},"content":{"rendered":"<p>That\u2019s according to a recent Bloomberg piece:\u00a0<a href=\"http:\/\/www.bna.com\/new-sheriff-town-n17179918966\/\" target=\"_blank\" rel=\"noopener\">New Sheriff in Town: FCC Expands Its Reach to Data Security<\/a>.<br \/>\n<a href=\"https:\/\/owncloud.com\/wp-content\/uploads\/2014\/12\/bigstock-Secure-Online-Cloud-Computing-56874824.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-page-big-thumb wp-image-14787\" src=\"https:\/\/owncloud.com\/wp-content\/uploads\/2014\/12\/bigstock-Secure-Online-Cloud-Computing-56874824-600x332.jpg\" alt=\"Secure Online Cloud Computing Concept\" width=\"600\" height=\"332\" \/><\/a>According to the story: \u201cThe Federal Communications Commission (FCC) entered the data security enforcement field in October, levying a $10 million fine against two telecommunications companies for failing to secure and protect their customers\u2019 personal information. This is first time the FCC has used its authority to levy fines based on inadequate data security, and it has uncovered a divergence of views within the FCC about the agency\u2019s own enforcement authority.\u201d<\/p>\n<p>This could have significant consequences in the near and long term. Certainly in the near term on telecommunication companies offering cloud services (email, file sync and share etc.), this could easily be adopted by other government agencies to impact other cloud providers.<\/p>\n<p>\u201cThe FCC held that the companies\u2019 alleged failure to secure personal information constituted a violation of the companies\u2019 duty under Section 222(a) of the Communications Act (the Act) to protect such information, as well as an unjust and unreasonable practice in violation of Section 201(b) of the Act, \u201cgiven that their data security practices lacked even the most basic and readily available technologies and security features and thus create[d] an unreasonable risk of unauthorized access.\u201d\u201d<\/p>\n<p>The authors go on to explain the overlap between the FCC and the FTC vis a vis data protection:<\/p>\n<p>\u201c\u2026at the federal level, data privacy and security enforcement has long been primarily the domain of the FTC, with certain industry-specific authority held by other regulatory agencies. The FTC\u2019s general authority to regulate consumer data privacy and security issues stems from Section 5(a)(1) of the FTC Act, which restricts \u201cunfair or deceptive\u201d trade practices \u2014although the FTC also has enforcement authority with respect to other, more targeted privacy laws\u2026\u201d<\/p>\n<p>I won\u2019t quote the whole story, you should read it in its entirety, but the bottom line is that the government in the US is beginning to take data privacy very seriously. Businesses that have previously just averted their eyes to employee use of consumer-grade cloud services and hoped for the best, may now need to look at the problem in a new \u2013 and perhaps very expensive \u2013 light.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>That\u2019s according to a recent Bloomberg piece:\u00a0New Sheriff in Town: FCC Expands Its Reach to Data Security. According to the story: \u201cThe Federal Communications Commission (FCC) entered the data security enforcement field in October, levying a $10 million fine against two telecommunications companies for failing to secure and protect their customers\u2019 personal information. This is [&hellip;]<\/p>\n","protected":false},"author":15,"featured_media":78665,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","inline_featured_image":false,"footnotes":""},"categories":[48],"tags":[167,149,69,56,67],"class_list":["post-14786","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-business-data-security","tag-data-security","tag-enterprise-file-sharing","tag-file-sharing","tag-secure-file-sharing"],"acf":[],"_links":{"self":[{"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/posts\/14786","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/users\/15"}],"replies":[{"embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/comments?post=14786"}],"version-history":[{"count":0,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/posts\/14786\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/media\/78665"}],"wp:attachment":[{"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/media?parent=14786"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/categories?post=14786"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/owncloud.com\/de\/wp-json\/wp\/v2\/tags?post=14786"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}