ABA Banking Journal
No Result
View All Result
  • Topics
    • Ag Banking
    • Commercial Lending
    • Community Banking
    • Compliance and Risk
    • Cybersecurity
    • Economy
    • Human Resources
    • Insurance
    • Legal
    • Mortgage
    • Mutual Funds
    • Payments
    • Policy
    • Retail and Marketing
    • Tax and Accounting
    • Technology
    • Wealth Management
  • Newsbytes
  • Podcasts
  • Magazine
    • Subscribe
    • Advertise
    • Magazine Archive
    • Newsletter Archive
    • Podcast Archive
    • Sponsored Content Archive
SUBSCRIBE
ABA Banking Journal
  • Topics
    • Ag Banking
    • Commercial Lending
    • Community Banking
    • Compliance and Risk
    • Cybersecurity
    • Economy
    • Human Resources
    • Insurance
    • Legal
    • Mortgage
    • Mutual Funds
    • Payments
    • Policy
    • Retail and Marketing
    • Tax and Accounting
    • Technology
    • Wealth Management
  • Newsbytes
  • Podcasts
  • Magazine
    • Subscribe
    • Advertise
    • Magazine Archive
    • Newsletter Archive
    • Podcast Archive
    • Sponsored Content Archive
No Result
View All Result
No Result
View All Result
ADVERTISEMENT
Home Cybersecurity

Third Circuit Affirms FTC’s Authority to Regulate Cybersecurity

August 24, 2015
Reading Time: 2 mins read

Case: FTC v. Wyndham Worldwide Corp.

Issue: Whether the Federal Trade Commission (FTC) has authority to bring an enforcement action against Wyndham Worldwide Corp. (Wyndham) over inadequate cybersecurity under the unfairness prong of Section 5 of the FTC Act.

Case Summary: The Third Circuit ruled that the FTC has authority under the unfairness prong of Section 5 of the FTC Act to bring an enforcement action against Wyndham for failure to provide “reasonable” cybersecurity.

The FTC alleged that from 2008 to early 2010, hackers breached Wyndham’s corporate computer system on three separate occasions and stole credit and debit card numbers of approximately 619,000 consumers. In June 2012, the FTC brought an enforcement action asserting that Wyndham violated the unfairness prong of Section 5 of the FTC Act by failing to provide “reasonable” cybersecurity for the personal information of its customers, which resulted in $10.6 million in losses due to fraud.

In April 2014, Wyndham filed a motion to dismiss asserting that the FTC does not have authority to “impose general data-security standards” on business in all industries in the absence of specific legislation. The New Jersey district court denied the motion but certified its decision for appeal to the Third Circuit.

The Third Circuit affirmed the district court’s ruling that the FTC has authority to regulate cybersecurity under Section 5 of the FTC Act. First, the Court rejected Wyndham’s argument that the FTC failed to prove “unfair” practices within its plain meaning, concluding that “standard doesn’t require unscrupulous or unethical behavior if there is injury to consumers, nor must the conduct be not equitable.” Second, the Court rejected Wyndham’s argument that Congress gave the FTC specific data security enforcement powers with the Gramm-Leach-Bliley Act and the Fair Credit Reporting Act. In the court’s view, the legislation does not conflict with the FTC Act, and the legislation was not “inexplicable” if the FTC had authority to regulate cybersecurity under Section 5. Finally, the Court rejected Wyndham’s argument that it was not fairly noticed over its cybersecurity practices on the grounds that Wyndham “was not entitled to know with ascertainable certainty the FTC’s interpretation of what cybersecurity practices are required.”

Bottom Line: The Third Circuit’s decision will strengthen the FTC’s exercise of authority over issues of cybersecurity.

ADVERTISEMENT
Tags: Cybersecurity
ShareTweetPin

Author

Thomas Pinder

Thomas Pinder

Thomas Pinder is senior vice president and deputy general counsel at ABA.

Related Posts

U.S. Supreme Court rules CFPB’s funding structure is constitutional

With Trump signing repeal of CFPB overdraft rule, ABA to drop lawsuit

Compliance and Risk
May 9, 2025

President Trump has signed into law an ABA-championed resolution overturning the CFPB’s limits on overdraft fees.

CFPB claims ‘complex’ pricing drives up cost of financial products

CFPB rescinds dozens of guidance documents

Compliance and Risk
May 9, 2025

The CFPB announced it is rescinding dozens of guidance documents on topics such as fair lending, overdraft fees, disclosure policies and consumer information requests to large banks and credit unions.

CFPB issues decision on TILA preemption of state laws

ABA, plaintiffs push back against state claims in Illinois interchange lawsuit

Legal
May 9, 2025

ABA and other plaintiffs said the court has already recognized that an Illinois law restricting certain interchange fees is preempted by federal law, so it should reject the state’s arguments against the court making a summary judgment in...

FDIC’s McKernan sees lack of justification for proposed capital standards

Trump nominates McKernan for Treasury Department role

Newsbytes
May 9, 2025

President Trump nominated former FDIC Board Member Jonathan McKernan as undersecretary of domestic finance at the Treasury Department. McKernan had been the nominee to lead the CFPB.

Former NCUA chair named acting OCC head

Acting Comptroller Hood outlines OCC priorities

Compliance and Risk
May 9, 2025

Acting Comptroller Rodney Hood outlined his top priorities for the OCC, including efforts to promote financial inclusion and expand the banks’ ability to provide cryptocurrency services.

ABA DataBank: Dow Jones Transportation Index on track for worst performance of last decade

ABA DataBank: Dow Jones Transportation Index on track for worst performance of last decade

Economy
May 9, 2025

The Dow Jones Transportation Average, which measures shipping, rail and logistics companies, is exhibiting one of its worst H1 performances in 10 years.

NEWSBYTES

With Trump signing repeal of CFPB overdraft rule, ABA to drop lawsuit

May 9, 2025

CFPB rescinds dozens of guidance documents

May 9, 2025

ABA, plaintiffs push back against state claims in Illinois interchange lawsuit

May 9, 2025

SPONSORED CONTENT

Choosing the Right Account Opening Platform: 10 Key Considerations for Long-Term Success

Choosing the Right Account Opening Platform: 10 Key Considerations for Long-Term Success

April 25, 2025
Outsourcing: Getting to Go/No-Go

Outsourcing: Getting to Go/No-Go

April 5, 2025
Six Payments Trends Driving the Future of Transactions

Six Payments Trends Driving the Future of Transactions

March 15, 2025
AI for Banks: A Starter Guide for Community and Regional Institutions

AI for Banks: A Starter Guide for Community and Regional Institutions

March 1, 2025

PODCASTS

Podcast: Accelerating banking for quick-service restaurants

May 8, 2025

How a Georgia community bank supports government-guaranteed lending nationwide

May 1, 2025

Podcast: Quantum computing’s shakeup in payments, cybersecurity

April 24, 2025
ADVERTISEMENT

American Bankers Association
1333 New Hampshire Ave NW
Washington, DC 20036
1-800-BANKERS (800-226-5377)
www.aba.com
About ABA
Privacy Policy
Contact ABA

ABA Banking Journal
About ABA Banking Journal
Media Kit
Advertising
Subscribe

© 2025 American Bankers Association. All rights reserved.

No Result
View All Result
  • Topics
    • Ag Banking
    • Commercial Lending
    • Community Banking
    • Compliance and Risk
    • Cybersecurity
    • Economy
    • Human Resources
    • Insurance
    • Legal
    • Mortgage
    • Mutual Funds
    • Payments
    • Policy
    • Retail and Marketing
    • Tax and Accounting
    • Technology
    • Wealth Management
  • Newsbytes
  • Podcasts
  • Magazine
    • Subscribe
    • Advertise
    • Magazine Archive
    • Newsletter Archive
    • Podcast Archive
    • Sponsored Content Archive

© 2025 American Bankers Association. All rights reserved.