To Be in America: Online Retailer Settlement

Online Apparel Retailer Settles FTC Charges That It Failed to Safeguard Consumers’ Sensitive Information, in Violation of Federal Law
Credit Card Numbers, Expiration Dates and Security Codes of Thousands of Consumers Compromised

Life is good designs and sells retail apparel and accessories and operates the Web site, www.lifeisgood.com. According to the FTC’s complaint, through its Web site, Life is good has collected sensitive consumer information, including names, addresses, credit card numbers, credit card expiration dates, and credit card security codes. Its privacy policy claimed, “We are committed to maintaining our customers' privacy. We collect and store information you share with us - name, address, credit card and phone numbers along with information about products and services you request. All information is kept in a secure file and is used to tailor
our communications with you.” Contrary to these claims, the FTC alleges that Life is good failed to provide reasonable and appropriate security for the sensitive consumer information stored on its computer network. Specifically, the FTC charged that the company:

* unnecessarily risked credit card information by storing it indefinitely in clear, readable text on its network, and by storing credit security card codes;
* failed to assess adequately the vulnerability of its Web site and corporate computer network to commonly known and reasonably foreseeable attacks, such as SQL injection attacks;
* failed to implement simple, free or low-cost, and readily available security defenses to SQL and similar attacks; failed to use readily available security measures to monitor and control connections from the network to the Internet; and
* failed to employ reasonable measures to detect unauthorized access to credit card information.

The FTC alleges that, as a result of these failures, a hacker was able to use SQL injection attacks on Life is good’s Web site to access the credit card numbers, expiration dates, and security codes of thousands of consumers.

The settlement bars Life is good from making deceptive claims about its privacy and security policies. It requires the company to establish and maintain a comprehensive security program reasonably designed to protect the security, confidentiality, and integrity of personal information it collects from consumers. The program must contain administrative, technical, and physical safeguards appropriate to Life is good’s size, the nature of its activities, and the sensitivity of the personal information it collects. Specifically, Life is good must:

* Designate an employee or employees to coordinate the information security program.
* Identify internal and external risks to the security and confidentiality of personal information and assess the safeguards already in place.
* Design and implement safeguards to control the risks identified in the risk assessment and monitor their effectiveness.
* Develop reasonable steps to select and oversee service providers that handle the personal information of Life is good customers.
* Evaluate and adjust its information-security program to reflect the results of monitoring, any material changes to the company’s operations, or other circumstances that may impact the effectiveness of its security program.

The settlement requires Life is good to retain an independent, third-party security auditor to assess its security program on a biennial basis for the next 20 years. The auditor will be required to certify that Life is good’s security program meets or exceeds the requirements of the FTC’s order and is operating with sufficient effectiveness to provide reasonable assurance that the security of consumers’ personal information is being protected.

The settlement also contains bookkeeping and record keeping provisions to allow the agency to monitor compliance with its order.

The FTC works for the consumer to prevent fraudulent, deceptive, and unfair business practices and to provide information to help spot, stop, and avoid them. To file a complaint in English or Spanish, click http://www.ftc.gov/ftc/complaint.shtm or call 1-877-382-4357. The FTC enters Internet, telemarketing, identity theft, and other fraud-related complaints into Consumer Sentinel, a secure, online database available to more than 1,600 civil and criminal law enforcement agencies in the U.S. and abroad.
source; the FTC

American Holidays

Official information and services from the U.S. government

Americans celebrate a variety of holidays throughout the year. American holidays can be secular, religious, international or uniquely American. With the wide variety of holidays and the many levels of American government it can be confusing to determine what public and private facilities are open on a given holiday. You can usually find out in the daily newspaper or by calling the office you wish to visit.

New Year's Day is January 1st. The celebration of this holiday begins the night before, when Americans gather to wish each other a happy and prosperous coming year. Many Americans make New Year's Resolutions.

Martin Luther King Day is the third Monday in January. The Reverend Martin Luther King, Jr. was an African-American clergyman who is recognized for his tireless efforts to win civil rights for all people through nonviolent means.

Washington's Birthday is observed the third Monday of February to honor George Washington, the first President of the United States. This date is commonly called Presidents' Day and many groups honor the legacy of past presidents on this date.

Valentine's Day, is celebrated on February 14^th. The day was named after an early Christian martyr, and on Valentine’s Day, Americans give presents like candy or flowers to the ones they love.

Easter falls on a spring Sunday that varies from year to year. Easter is a Christian holiday celebrating the resurrection of Jesus Christ. For Christians, Easter is a day of religious services and the gathering of family. Many Americans follow old traditions of coloring hard-boiled eggs and giving children baskets of candy.

Memorial Day is observed the last Monday of May. It originally honored the people killed in the American Civil War, but has become a day on which the dead of all wars, and the dead generally, are remembered in special programs held in cemeteries, churches, and other public meeting places. The flying of the American flag is widespread.

Independence Day is July 4^th. This holiday honors the nation's birthday – the signing of the Declaration of Independence on July 4, 1776. It is a day of picnics and patriotic parades, a night of concerts and fireworks. The flying of the American flag is widespread.

Labor Day is the first Monday of September. This holiday honors the nation's working people, typically with parades. For most Americans it marks the end of the summer vacation season and the start of the school year.

Columbus Day is celebrated on the second Monday in October. The day commemorates October 12, 1492, when Italian navigator Christopher Columbus landed in the New World.

Halloween is celebrated on October 31. On Halloween, American children dress up in funny or scary costumes and go "trick or treating" by knocking on doors in their neighborhood. The neighbors are expected to respond by giving them small gifts of candy or money.

Veterans Day is celebrated on November 11^th. Originally called Armistice Day, this holiday was established to honor Americans who had served in World War I, but it now honors veterans of all wars in which the U.S. has fought. Veterans' organizations hold parades, and the president places a wreath on the Tomb of the Unknowns at Arlington National Cemetery.

Thanksgiving Day is the fourth Thursday in November. The holiday dates back to 1621, when Puritans, who had just enjoyed a bountiful harvest, showed their gratitude to the Native Americans for their help by hosting a feast to give thanks. The Thanksgiving feast became a national tradition and almost always includes some of the foods served at the first feast: roast turkey, cranberry sauce, potatoes, and pumpkin pie.

Christmas Day is celebrated on December 25. Christmas is a Christian holiday marking the birth of the Christ Child. Decorating houses and yards with lights, putting up Christmas trees, giving gifts, and sending greeting cards have become traditions even for many non-Christian Americans.

What's New?

Online Retailer Settlement

Welcome to America

Census Bureau Population Estimates: PopClocks

CNN.com - Politics

The latest news

Obama HQ

Visitors

White House News

USA.gov Updates: News and Features

Immigration and Citizenship

We're on a blogroll!

Recreation and Tourism

Get Tourist Information

Topics

American Holidays

This site was recently updated