On December 17 the FTC fined and penalized American United Mortgage Company for throwing the personally identifiable information (PII) and financial information of its customers into an open, publicly-accessible dumpster.
The ruling indicated American United Mortgage Company violated the following:
- The Disposal Rule portion of FACTA (an amendment to FCRA)
- The Privacy Rule portion of GLBA
- The FTC Act
It's also interesting that the mortgage company denied throwing the customer PII into the dumpster, even though the information was found within the dumpster and used as evidence. My question is who found these documents and how? Was the company set up by a disgruntled employee, or is the company simply lying? I guess it doesn't really matter at this point, but it's still food for thought. The full article can be found here .
No related articles.
