WASHINGTON — YourTel America and TerraCom have agreed to pay $3.5 million to resolve an Federal Communications Commission investigation into allegations that the phone companies stored customer personal information on unprotected servers, resulting in a data breach that exposed Social Security numbers, driver’s licenses and other sensitive information collected from more than 300,000 consumers.
The settlement also resolves the FCC's investigation of YourTel for allegedly failing to remove ineligible Lifeline subscribers after the regulator told it to, resulting in unwarranted payments from the federal subsidy program.
The personal information had been collected to establish eligibility for the lifeline program, a phone subsidy for low-income Americans that is being migrated to a broadband subsidy.
The FCC is currently deciding how to enforce its new authority over broadband providers' protection of customer information, power it gained through the reclassification of ISPs as telcos under Title II of the Communications Act.
“Consumers rightly expect that companies will take every reasonable precaution to protect their personal information,” Travis LeBlanc, chief of the FCC’s Enforcement Bureau, said. “It is a breach of customer trust for a company to promise to protect personal information while failing to take reasonable measures to protect sensitive customer information from unauthorized access by anyone with a search engine."
In addition to paying the money, the companies have pledged to boost privacy and data security, including a risk assessment and strict oversight of vendors, and to provide free credit monitoring services for any affected individuals.
Weekly digest of streaming and OTT industry news
Thank you for signing up to Multichannel News. You will receive a verification email shortly.
There was a problem. Please refresh the page and try again.