FTC chief says consumer opt-in agreements need to be clarified LAS VEGAS — Two top federal regulators on Wednesday urged tech companies to expand their efforts to protect consumer privacy.“There is a responsibility if you collect [personal] information,” Federal Communications Commission Chairman Tom Wheeler said at CES.He said Internet service providers (ISPs) have a responsibility to make sure personal data is held securely and that companies are transparent about what’s being captured. Wheeler also said consumers need to know that they have a choice — opting in or out — as to whether their personal data is collected.“There’s no question that with connected devices, data is becoming today’s currency, and we need to be aware of the impact of that on consumers,” added Federal Trade Commission Chairwoman Edith Ramirez. The two chairs spoke separately in an interview format during a session at CES. Consumer Technology Association CEO Gary Shapiro asked the questions. Ramirez said personal data is collected in so many ways that consumers might not be fully aware of information they’ve opted to share.“It could be a smart fork to document what I’m consuming late at night,” she added. Devices are “gathering increasingly sensitive information about us, and how it is being used or shared, and the potential for unintended uses, is a concern.” Ramirez was especially concerned that Pew Research Center recently reported that a significant minority of Americans are conflicted about sharing personal information with companies.Pew found that 47% of Americans lacked confidence that they understand what would be done with personal information and had mixed feelings about whether or not to share it.Ramirez added: “As companies amass all this information about us, they can reach inferences from seemingly benign information.” She said the FTC wants to try to provide guidance to the public on addressing such concerns.Recognizing that Apple received wide consent from consumers to share personal health data for medical research, Ramirez said: “Consumers are willing to share if they can be assured … they understand what it is used for — if for the greater good or if shared for other parties for purposes we don’t know…. It’s clear, based on research…that consumers care very deeply about privacy.”Ramirez didn’t single out any companies that might be raising privacy red flags, but did argue that companies “need to more clear” with how they will use private data. She also said it is important that “companies don’t collect information that they truly don’t need…that exposes risk.”She called out lengthy and legalistic warranties that come with new devices and apps, which most consumers just click through quickly. “We need to do a lot more work in this area; most [consumers] are concerned how the information is used.” Ramirez is personally concerned about sharing some of her own personal health data: she pulled out an older, small unconnected pedometer that she uses to measure her steps, noting that she prefers it over a smarter, connected device like a Fitbit. She said she was using an “old school pedometer; I don’t want to share.”The FTC has brought 50 cases against organizations over data security lapses in recent months, and Ramirez said such actions show that companies need to have reasonable security protections in place to protect the personal information collected and used.“We’re here to protect consumers and if companies run afoul of the law, we’re going to take action,” Ramirez said. Related content feature Cybersecurity startups to watch for in 2023 These startups are jumping in where most established security vendors have yet to go. By CSO Staff Sep 29, 2023 19 mins CSO and CISO CSO and CISO C-Suite news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry news UK data regulator warns that data breaches put abuse victims’ lives at risk The UK Information Commissioner’s Office has reprimanded seven organizations in the past 14 months for data breaches affecting victims of domestic abuse. By Michael Hill Sep 28, 2023 3 mins Electronic Health Records Data Breach Government news EchoMark releases watermarking solution to secure private communications, detect insider threats Enterprise-grade software embeds AI-driven, forensic watermarking in emails and documents to pinpoint potential insider risks By Michael Hill Sep 28, 2023 4 mins Communications Security Threat and Vulnerability Management Security Software Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe