WASHINGTON September 15, 2022 – The Federal Trade Commission should consider adopting standards established by the European Union’s General Data Protection Regulation to force Big Tech platforms to consent to the use of their user’s personal information, according to the CEO of a digital content trade organization.
The FTC proposed last month to use its authority under Section 18 of the FTC Act to bring “commercial surveillance” – the act of entities collecting personal information and selling them to third-party data brokers – under its authority to further regulate technology platforms. Section 18 is a statute of the FTC Act that grants the commission the authority to implement trade regulation rules for businesses that use tactics that are considered “unfair” or harmful to consumers.
Digital Content Next CEO Jason Kint said during an FTC public hearing on the matter on September 8 that the EU’s GDPR model provides an established practice of requiring companies and organizations to get consent to the use of their data in these contexts.
“Having a pop-up come up [for consent] every time you visit the site…that’s entirely in line with users’ expectations,” Kint said. To comply with GDPR principles, websites shown to users in the United States must ask visitors if they consent to the collection of their data in part to cater certain products to them.
“The user doesn’t want it to happen where their data is being tracked by third parties,” Kint said.
“So, if you’re the party that they’re choosing to interact with for service, providing them that data is very different.”
In August, the FTC announced an rulemaking to consider commercial surveillance as a Section 18 violation of the FTC Act. It its notice seeking comment, the FTC asked questions about what companies should disclose, who would administer the disclosure agreements, and if the FTC should impose limitations on the mechanisms companies use to hide their surveillance practices.
On July 20, the Senate Commerce Committee passed comprehensive privacy legislation a restricting collection and transfer of personal data of U.S. citizens without consent.
The measure has not yet passed the House, but in responding to the August announcement, Energy and Commerce Committee Chairman Frank Pallone, D-N.J., said that it is the responsibility of Congress, not the FTC, “to pass comprehensive federal privacy legislation.”
There are currently more than 120,000 comments on this issue. The FTC is still collecting public statements on this issue until October 21.