The U.S. Federal Trade Commission finalized enforcement action against online alcohol marketplace Drizly and CEO James Cory Rellas related to its 2020 data breach. The agency voted 4-0 on finalization after no further comments were submitted. The order calls on Drizly to destroy unnecessary data and implement data minimization and information security programs, while holding Rellas to individual requirements. Editor's note: The IAPP's Cobun Zweifel-Keegan, CIPP/US, CIPM, analyzed the Drizly order and its potential implications.
11 Jan. 2023
FTC finalizes Drizly enforcement action
Related stories
Notes from the IAPP Canada: Keeping watch on federal, provincial developments
Italy updates National Cybersecurity and Data Protection Framework
Vietnam's data protection laws: The basics and beyond
Notes from the Asia-Pacific region: NZ OPC calls for 'doing privacy well'
GDPR matchup: Australia's Privacy Act 1988
