archives  If you want an RSS feed try this xml rss V0.91 feed

Thursday, June 19, 2003

'Guess who's fault it is? Yours!'

Guess and FTC LogoWASHINGTON - The U.S. Federal Trade Commission (FTC) has settled a case with clothing and accessory vendor Guess, in which the agency accused the company of not taking appropriate measures to secure its Guess.com Web site. The judgment was all about the misleading claims made by the retailer about the security it afforded it's web site visitors. They, Guess, said they took all reasonable measures to protect the information given to them by their on-line customers but they did not, got hacked, then got caught! The company is now subject to several compliance orders imposed upon it by the FTC, including the requirement for it's security measures to be independently audited on a regular basis. Other provisions in the FTC's order include the requirement for the company to retain document relating to it's compliance for a period of 5 years. While this article relates to actions in the USA, we believe this kind of regulatory compliance is also appropriate here in the EU, and it would be hard for a company to defend itself from actions brought about by someone suffering from identity theft after using an e-commerce site. ®© Related Links The FTC's analysis of the ruling FTC settles with Guess on Web vulnerabilities, an article by Grant Gross IDG News USA - ID Theft UK the DTI's take on ID - Theft

posted by Robert Campbell 9:49 PM


Powered by Blogger Pro™