FCC Proposal To ISPs: Protect Consumer Privacy - InformationWeek
Government // Cybersecurity
12:06 PM
4 Keys to Improving Security Threat Detection
Dec 15, 2016
In this webinar, Ixia will show how to combine the four keys to improving security threat detectio ...Read More>>

FCC Proposal To ISPs: Protect Consumer Privacy

The plan would protect the privacy rights of consumers by making broadband providers disclose privacy policies and notify consumers of breaches.

8 Ways To Secure Data During US-EU Privacy Fight
8 Ways To Secure Data During US-EU Privacy Fight
(Click image for larger view and slideshow.)

The Federal Communication Commission (FCC) unveiled a proposal to give broadband consumers increased choice, transparency and security with respect to their data.

The proposal will be voted on by the full commission at the March 31 open meeting, and, if adopted, would be followed by a period of public comment.

The FCC is arguing that consumers should have effective control over how their personal information is used and shared by their broadband service providers, something telephone networks have but broadband providers do not.

FCC Chairman Tom Wheeler's proposal to protect consumer privacy is built on three core principles -- choice, transparency, and security.

The plan states consumers have the right to exercise informed control over what personal data their broadband provider uses and under what circumstances it shares their personal information with third parties. The plan also states that broadband providers have a responsibility to protect consumer data as it is carried across their networks and wherever it is stored.

(Image: D3Damon)(/p)

(Image: D3Damon)(/p)

Broadband providers would also have to provide accurate disclosures of their privacy practices in an easily understandable and accessible manner.

Under the Chairman's proposal, customer data necessary to provide broadband services and for marketing the type of broadband service purchased by a customer would require no additional customer consent beyond the creation of the customer-broadband provider relationship.

In the event of a privacy breach, providers would be required to notify affected customers of breaches of their data no later than 10 days after they are discovered, and to inform the Commission of any breach of customer data no later than 7 days after discovery.

Create a culture where technology advances truly empower your business. Attend the Leadership Track at Interop Las Vegas, May 2-6. Register now!

Broadband providers would also be required to notify the FBI and the Secret Service of breaches affecting more than 5,000 customers no later than 7 days after discovery of the breach.

Under Wheeler's proposal, broadband providers would be allowed to use customer data for the purposes of marketing and to share customer data with affiliates that provide related services unless the customer affirmatively opts out.

The scope of the proposal does not include the privacy practices of websites, such as Twitter or Facebook, over which the Federal Trade Commission has authority, nor does it include other types of services offered by a broadband provider, such as the operation of a social media website.

The proposal does not include any recommendations or action concerning issues such as government surveillance, encryption, or law enforcement.

"It's a major step forward for the U.S., which has lagged behind other countries when it comes to protecting consumer privacy rights," Jeff Chester, executive director of the Center for Digital Democracy, said in a statement.

Not everyone on the FCC is on board with the proposal, however. Commissioner Michael O'Rielly, who previously lambasted the organization's stance on Net Neutrality, issued a strongly worded statement condemning the broadband consumer privacy proposal fact sheet.

"The fact sheet demonstrates that the FCC is doubling down on its misguided and broken Net Neutrality decision by imposing troubling and conflicting privacy rules on Internet companies, as well as freelancing on topics like data security and data breach that are not even mentioned in the statute," he wrote. "While I will read the document, this direction does not surprise me given this agency's reckless approach to an important topic, especially where it clearly lacks expertise, personnel, or understanding."

Nathan Eddy is a freelance writer for InformationWeek. He has written for Popular Mechanics, Sales & Marketing Management Magazine, FierceMarkets, and CRN, among others. In 2012 he made his first documentary film, The Absent Column. He currently lives in Berlin. View Full Bio

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
Top IT Trends to Watch in Financial Services
IT pros at banks, investment houses, insurance companies, and other financial services organizations are focused on a range of issues, from peer-to-peer lending to cybersecurity to performance, agility, and compliance. It all matters.
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of November 6, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll