The U.S. Federal Trade Commission finalized enforcement action against online alcohol marketplace Drizly and CEO James Cory Rellas related to its 2020 data breach. The agency voted 4-0 on finalization after no further comments were submitted. The order calls on Drizly to destroy unnecessary data and implement data minimization and information security programs, while holding Rellas to individual requirements. Editor's note: The IAPP's Cobun Zweifel-Keegan, CIPP/US, CIPM, analyzed the Drizly order and its potential implications.
11 Jan. 2023
FTC finalizes Drizly enforcement action
Related stories
Notes from the IAPP Canada: Breaches deserve swift, focused attention from all sides
Risk analysis is the foundation of data security, but regulator approaches differ
Nebraska, Vermont's Age Appropriate Design Codes look to bolster children's online safety
A view from Brussels: The challenge of intimate privacy
Notes from the Asia-Pacific region: India feels geopolitical impacts, awaits DPDPA rules, and more
