American Apparel Settles FTC Charge It Falsely Claimed to Comply with International Safe Harbor Privacy Framework
- Created on Friday, 09 May 2014 17:54
- Written by IVN
Washington, DC - Clothing manufacturer American Apparel has agreed to settle Federal Trade Commission charges that it falsely claimed it was abiding by an international privacy framework known as the U.S.-EU Safe Harbor that enables U.S. companies to transfer consumer data from the European Union to the United States in compliance with EU law.
“The FTC is committed to making sure that when companies claim they’re participating in the U.S.-EU Safe Harbor Framework, they’re abiding by the terms of the program,” said Jessica Rich, Director of the FTC’s Bureau of Consumer Protection.
According to a complaint filed by the FTC, the Los Angeles-based company deceptively claimed it held current certifications under the U.S.-EU and U.S.-Swiss Safe Harbor frameworks. The Safe Harbor frameworks are voluntary programs administered by the U.S. Department of Commerce in consultation with the European Commission and Switzerland.
To participate, a company must self-certify annually to the Department of Commerce that it complies with the seven privacy principles required to meet the EU’s adequacy standard: notice, choice, onward transfer, security, data integrity, access, and enforcement.
Under the proposed settlement agreement, American Apparel is prohibited from misrepresenting the extent to which it participates in any privacy or data security program sponsored by the government or any other self-regulatory or standard-setting organization.
Consumers who want to know whether a U.S. company is a participant in the U.S-EU or U.S.-Swiss Safe Harbor program may visit http://export.gov/safeharbor to see if the company holds a current self-certification.
This case was brought with the valuable assistance of the U.S. Department of Commerce.