Cyber threats are made from various sources, and they are often aimed at obtaining personal information for exploitation or benefit. As the sophistication of these attacks increases, more effective internal and regulatory safeguards are needed. The concept of internet privacy is a subset of the broader data privacy field that covers the collection, use, and secure storage of personal data (PI). It concerns how PI is exposed online through tracking, cybersecurity threats, and data sharing.
The rise of digital footprints has made it easy for people to collect and share their personal information online. From entering their credit or debit card information on a website to signing up for an account on social media to storing documents and images in cloud storage, people are constantly releasing their data into cyberspace.
Due to the nature of the Internet, no single law can prevent people from being exposed to various types of breaches of their online privacy. Instead, various state and federal laws regulate personal information collection, use, and sharing. Below are some of the key federal laws currently affecting internet privacy.
Electronic Communications Privacy Act (ECPA) [1986]
The ECPA was established to protect the privacy of electronic communications. It prohibits unauthorized access, use, and disclosure of certain wire, oral, or electronic communications.
The ECPA was established to protect the privacy of electronic communications. It prohibits unauthorized access, use, and disclosure of certain wire, oral, or electronic communications.
Computer Fraud & Abuse Act (CFAA) [1986]
This law makes it unlawful for people to perform certain computer-related activities, such as accessing a computer to obtain or transmit sensitive information, harmful items, or traffic in a computer's passwords. The law has been updated six times.
This law makes it unlawful for people to perform certain computer-related activities, such as accessing a computer to obtain or transmit sensitive information, harmful items, or traffic in a computer's passwords. The law has been updated six times.
Children's Online Privacy Protection Act (COPPA) [1998]
The COPPA requires websites and online service providers to get verifiable parental consent before collecting, using, or disclosing the personal information of children under 13. It also requires them to create and maintain secure online privacy policies and implement other measures to protect their users' privacy.
The COPPA requires websites and online service providers to get verifiable parental consent before collecting, using, or disclosing the personal information of children under 13. It also requires them to create and maintain secure online privacy policies and implement other measures to protect their users' privacy.
Controlling the Assault of Non-Solicited Pornography and Marketing Act (CAN-SPAM Act) [2003]
The CAN-SPAM Act protects the privacy of non-solicited commercial emails by prohibiting the use of misleading and deceptive subject lines and statements. It also requires senders to provide opt-out mechanisms, disclose certain information, and create civil and criminal penalties for violations.
The CAN-SPAM Act protects the privacy of non-solicited commercial emails by prohibiting the use of misleading and deceptive subject lines and statements. It also requires senders to provide opt-out mechanisms, disclose certain information, and create civil and criminal penalties for violations.
Financial Sevices Modernization Act (GLBA) [1999]
The GLBA is a financial services legislation that regulates the collection, use, and disclosure of personal information held by financial institutions. It requires companies to provide customers with notice and a security program.
The GLBA is a financial services legislation that regulates the collection, use, and disclosure of personal information held by financial institutions. It requires companies to provide customers with notice and a security program.
Fair and Accurate Credit Transactions Act (FACTA) [2003]
The FACTA requires creditors and financial institutions to maintain comprehensive identity theft prevention programs.
The FACTA requires creditors and financial institutions to maintain comprehensive identity theft prevention programs.
