Risk
11/14/2012
09:52 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

FTC Commissioner Chats With Industry Leaders

"Privacy is being incorporated at the most fundamental levels," said Julie Brill at Annual PMA Marketing Law Conference

CHICAGO, Nov. 13, 2012 /PRNewswire/ -- FTC Commissioner Julie Brill joined Ron Urbach of Davis & Gilbert, in a far-ranging "Fireside Chat" as a keynote presentation of the Annual PMA Marketing Law Conference.

Before Commissioner Brill joined him onstage, Mr. Urbach reminded his audience of more than 600 leading lawyers, brand marketers and policymakers just how fast "Big Data" continues to grow. "Ninety percent of the data created over all of human history was created in the last two years," according to Mr. Urbach.

"Businesses have become data vacuum cleaners. It's important that legal concerns do not go unnoticed."

Commissioner Brill stressed that those concerns can never be an afterthought and discussed the FTC's recent privacy report and its recommendations around "privacy by design" where brands are asked to consider privacy issues at the conceptual stage rather than to treat them as an add-on.

When asked by Mr. Urbach for an overall impression of how the industry is meeting these challenges, she provided high marks. "I am remarkably encouraged by the amount of attention companies are giving to our recommendations," said Commissioner Brill. "Companies are bringing in people who specialize in these issues and creating Chief Privacy Officers. Privacy is being incorporated at the most fundamental levels."

Mr. Urbach and Commissioner Brill touched on a variety of topics including the need to consider what they termed "the context of the interaction" and the manner in which data is ultimately used; as well as privacy concerns around nascent technologies like facial recognition tools and new-to-market apps.

"The very fact that Commissioner Brill is participating in this forum for this audience demonstrates the need for our industry to be collaborative," said Mr.

Urbach. "We're all encouraged that the FTC recognizes the efforts the industry continues to make in this area. Today's marketplace is the most pluralistic we've seen. Power and innovation are decentralized and there is an increased access to information. All of that is good, but there is a dark side and we have to work together to protect the public."

Industry professionals and the general public are invited to keep up with the conference highlights at www.pmalink.com, on Twitter #pmalaw or by downloading the PMA Law 2012 app at the iTunes store.

About the PMA

Founded in 1911, the New York based PMA is the national non-profit trade association dedicated to the industry of marketing disciplines that motivate behavior, activate response and build brands. Representing $1trillion in sales, these disciplines include promotion marketing, digital marketing, shopper/retailer marketing, sponsorship and experiential marketing. The organization's membership is comprised of Fortune 500 companies, top marketing agencies, law firms, retailers, service providers and academia, representing thousands of brands worldwide. More information is available at www.pmalink.org.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-4440
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.

CVE-2013-4442
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.

CVE-2013-7401
Published: 2014-12-19
The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method.

CVE-2014-2026
Published: 2014-12-19
Cross-site scripting (XSS) vulnerability in the search functionality in United Planet Intrexx Professional before 5.2 Online Update 0905 and 6.x before 6.0 Online Update 10 allows remote attackers to inject arbitrary web script or HTML via the request parameter.

CVE-2014-2716
Published: 2014-12-19
Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time Location System (RTLS) Controller 6.0.5-FINAL, and Activator 3 reuses the RC4 cipher stream, which makes it easier for remote attackers to obtain plaintext messages via an XOR operation on two ciphertexts.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.