CONTRIBUTOR

ARTICLE

United States: FTC Settles Charges With Tax Preparation Service For GLBA Violations

21 September 2017

by Daniel J. McLoon , Mauricio Paez , Richard Johnson , Jonathon Little , Kevin Lyles , Todd McClelland , Jeff Rabkin , Lisa M. Ropple , Adam Salter , Michiru Takahashi , Undine Von Diemar , Olivier Haas , Jörg Hladjk and Anand Varadarajan

Jones Day

Your LinkedIn Connections
with the authors

To print this article, all you need is to be registered or login on Mondaq.com.

On August 29, the FTC announced a settlement with a tax preparation service for violations of the Safeguards Rule and Privacy Rule under the Gramm-Leach-Bliley Act ("GLBA"). The FTC alleged that hackers were able to gain full access to nearly 9,000 accounts and subsequently used that information to engage in tax identity theft. The FTC cited deficient security practices, which included a failure to "conduct a risk assessment to identify reasonably foreseeable internal and external risks to security," and a failure to "implement adequate risk-based authentication measures that would have helped reduce the chances of an attack from hackers who had used stolen credentials." As part of the settlement, the tax preparation service must obtain biennial third-party assessments of its GLBA compliance.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

AUTHOR(S)

Daniel J. McLoon

Jones Day

Mauricio F. Paez

Jones Day

Richard J. Johnson

Jones Day

Jonathon Little

Jones Day

Kevin D. Lyles

Jones Day

Todd S. McClelland

Jones Day

Jeff Rabkin

Jones Day

Lisa M. Ropple

Jones Day

Adam Salter

Jones Day

Michiru Takahashi

Jones Day

Undine Von Diemar

Jones Day

Olivier Haas

Jones Day

Jörg Hladjk

Jones Day

Anand Varadarajan

Jones Day

ARTICLE TAGS

United States Privacy Privacy Protection

POPULAR ARTICLES ON: Privacy from United States

RELATED CONTENT

FREE News Alerts

Sign Up for our free News Alerts - All the latest articles on your chosen topics condensed into a free bi-weekly email.

Article Tags

United States Privacy Privacy Protection

Related Articles

Contradictory CIPA Pen Register Decisions Create Uncertainty Klein Moynihan Turco LLP

HIPAA Privacy Protections For PHI Related To Reproductive Health Care: The Final Rule And What Covered Entities And Business Associates Need To Know Mintz

Data Privacy Lawsuits Rise As Lawyers Dust Off Wiretapping Laws Mintz

Data Privacy And Cyber Security Update - April 2024 Quinn Emanuel Urquhart & Sullivan

The American Privacy Rights Act: Could This Be The One? Perkins Coie LLP

Mondaq Webinars

MAY14

Asset Recovery and Judgment Enforcement: A Focus on 2024 Trends in the US and UK

JUN05

Killing the Paper Tiger – HR Toolbox for Running your German Operation Smoothly

Comparative Guides

Anti-Corruption & Bribery

Artificial Intelligence

Aviation Finance

Aviation Regulation

Banking Regulation

Mondaq Advice Centres

United States

Advertising and Marketing

United States

Telemarketing

United States

COVID-19

Global

Trademarks in SAARC Countries

United States

International Trade Law & Customs

Curated Content

Can, And Should, The U.S. Government Develop A CBDC System?
Braumiller Law Group, PLLC

Upcoming Events

MAY22

2024 ACC SFBA Privacy Summit

Finnegan, Henderson, Farabow, Garrett & Dunner, LLP

Webinar Washington, DC United States

MAY28

Data Protection And Cybersecurity: Safeguarding Trade Secrets In The Digital Age

Seyfarth Shaw LLP

Webinar Chicago United States

More filters

Mondaq Social Media

© Mondaq® Ltd 1994 - 2024. All Rights Reserved.

Please to Mondaq or for unlimited free access and a complimentary news alert

|

|

|

|