While I am sure that the vast majority of users never review privacy policies for the websites and devices they use, the content of these policies do matter. On February 22, 2013, the FTC settled a privacy-related investigation against HTC America for violation of HTC's privacy and security policies. The FTC charged that HTC America's mobile devices failed to employ reasonable and appropriate security practices and that these failures allowed unauthorized access to users' private data.
The settlement not only requires the establishment of a comprehensive security program, but also prohibits HTC America from making any false or misleading statements about the security and privacy of consumers’ data on HTC devices. HTC America and its network operator partners also agreed to deploy security patches to consumers’ devices.
The takeaway? Privacy policies are not just boilerplate--they should be examined periodically to make sure that they are being followed.
The settlement not only requires the establishment of a comprehensive security program, but also prohibits HTC America from making any false or misleading statements about the security and privacy of consumers’ data on HTC devices. HTC America and its network operator partners also agreed to deploy security patches to consumers’ devices.
The takeaway? Privacy policies are not just boilerplate--they should be examined periodically to make sure that they are being followed.