FTC's Top Consumer Enforcer Previously Represented Equifax. He Won't Lead the Probe.
The interim head of the Federal Trade Commission division that traditionally conducts data security investigations has recused from the agency's investigation into the Equifax breach because he previously represented the company while at the law firm Arnall Golden Gregory.
September 14, 2017 at 02:38 PM
11 minute read
The interim head of the Federal Trade Commission division that traditionally conducts data security investigations has recused himself from the agency's investigation into the Equifax Inc. breach because he previously represented the company while at the law firm Arnall Golden Gregory.
Thomas Pahl, a former partner at Arnall Golden in Washington, was named in February as the acting director of the FTC's bureau of consumer protection—the same division that was behind the agency's data security settlements with Ashley Madison and Wyndham Hotels and Resorts over massive data breaches.
In an email Thursday, Pahl confirmed he is “recused from working on matters involving Equifax because [of] my past representation of Equifax.”
Daniel Kaufman, one of his deputy directors, “will be taking my place on all such matters,” Pahl said. Kaufman joined the FTC in 1998 as a staff attorney in the consumer protection bureau's division of advertising practices, where he litigated false advertising cases. Before being named a deputy director in December 2011, Kaufman also served as the consumer protection bureau's chief of staff and as an adviser to former chairwoman Deborah Majoras.
The FTC publicly confirmed Thursday, in a rare move, that the agency was investigating the Equifax breach, which potentially compromised the personal information of 143 million Americans. Pahl's consumer protection division oversees a broad swath of the FTC's enforcement duties, cracking down on data security shortcomings, identity theft and deceptive advertising.
Pahl is the acting head because he serves at the discretion of the FTC's current chairwoman, Maureen Ohlhausen, who is also leading the agency in an interim capacity as the Trump administration searches for a permanent leader.
Pahl's return to the FTC in the Trump administration was a homecoming of sorts. Earlier, he'd served in other roles at the agency, beginning in 1990, including in the consumer protection bureau as assistant director in the divisions of advertising practices and financial practices. He has also worked at the Consumer Financial Protection Bureau.
“Tom's career demonstrates his continuing commitment to protecting consumers through active enforcement and advocacy that promotes a free and honest marketplace,” Ohlhausen said in a statement in February. “His thoughtful approach will help ensure consumers benefit from thriving competition and innovation. Tom's talent, deep consumer protection experience, and strong principles make him perfect to lead the Bureau of Consumer Protection, and I'm very pleased to have him aboard.”
Lobbying records reveal that Equifax paid Arnall Golden more than $2.5 million between 2011 and June of this year. Arnall Golden was first hired in February 2011 to advise Equifax on “issues impacting upon the credit reporting industry, such as credit header issues,” according to a lobbying registration.
Robert Belair, a partner at Arnall Golden who leads the firm's privacy and consumer regulatory practice, has lobbied for Equifax on Capitol Hill ever since on legislation related to data security and breach notification, along with bills proposing new limits on the credit reporting agency's primary regulator—the Consumer Financial Protection Bureau.
Since late 2016, Arnall Golden partner Montserrat Miller, a former counsel to U.S. Sen. Dianne Feinstein, has joined Belair in lobbying for Equifax.
The Equifax breach has drawn widespread outcry, not only for its scale but also for Equifax's perceived delay in notifying the public. The credit reporting agency said it learned of the breach in late July but only announced it last week—a wait time that could throw fuel on Congress' smoldering interest in establishing a national notification standard.
Two U.S. House of Representatives committees have announced plans to hold hearings on the breach, and numerous class actions are piling up.
The FTC said it was publicly announcing its investigation “in light of the intense public interest and the potential impact of this matter.”
The Equifax breach could give the FTC a platform like none other before to assert itself as the top cop on the cybersecurity beat, a status that has been contested in the courts but shown in the response to other notable hacks.
In December, the FTC joined with state attorneys general to reach a $1.6 million settlement with Ashley Madison, the dating site marketed to those looking to have affairs, over allegations connected to a 2015 data breach that exposed the account information of 36 million users.
A year before that settlement, Wyndham Hotels and Resorts agreed to establish a “comprehensive information security program” to resolve FTC allegations that the hospitality company's cybersecurity shortcomings exposed the payment card information of hundreds of thousands of consumers.
Related Articles:
|- Equifax, Before Breach, Lobbied to Limit Class-Action Damages
- Equifax's Latest Legal Nightmare Might Be This Chatbot
- 5 Things to Know About the First Wave of Equifax Actions
- In Ashley Madison Data-Breach Settlement, FTC Asserts Role as Cyber Cop
The interim head of the Federal Trade Commission division that traditionally conducts data security investigations has recused himself from the agency's investigation into the
Thomas Pahl, a former partner at
In an email Thursday, Pahl confirmed he is “recused from working on matters involving Equifax because [of] my past representation of Equifax.”
Daniel Kaufman, one of his deputy directors, “will be taking my place on all such matters,” Pahl said. Kaufman joined the FTC in 1998 as a staff attorney in the consumer protection bureau's division of advertising practices, where he litigated false advertising cases. Before being named a deputy director in December 2011, Kaufman also served as the consumer protection bureau's chief of staff and as an adviser to former chairwoman Deborah Majoras.
The FTC publicly confirmed Thursday, in a rare move, that the agency was investigating the Equifax breach, which potentially compromised the personal information of 143 million Americans. Pahl's consumer protection division oversees a broad swath of the FTC's enforcement duties, cracking down on data security shortcomings, identity theft and deceptive advertising.
Pahl is the acting head because he serves at the discretion of the FTC's current chairwoman, Maureen Ohlhausen, who is also leading the agency in an interim capacity as the Trump administration searches for a permanent leader.
Pahl's return to the FTC in the Trump administration was a homecoming of sorts. Earlier, he'd served in other roles at the agency, beginning in 1990, including in the consumer protection bureau as assistant director in the divisions of advertising practices and financial practices. He has also worked at the Consumer Financial Protection Bureau.
“Tom's career demonstrates his continuing commitment to protecting consumers through active enforcement and advocacy that promotes a free and honest marketplace,” Ohlhausen said in a statement in February. “His thoughtful approach will help ensure consumers benefit from thriving competition and innovation. Tom's talent, deep consumer protection experience, and strong principles make him perfect to lead the Bureau of Consumer Protection, and I'm very pleased to have him aboard.”
Lobbying records reveal that Equifax paid
Robert Belair, a partner at
Since late 2016,
The Equifax breach has drawn widespread outcry, not only for its scale but also for Equifax's perceived delay in notifying the public. The credit reporting agency said it learned of the breach in late July but only announced it last week—a wait time that could throw fuel on Congress' smoldering interest in establishing a national notification standard.
Two U.S. House of Representatives committees have announced plans to hold hearings on the breach, and numerous class actions are piling up.
The FTC said it was publicly announcing its investigation “in light of the intense public interest and the potential impact of this matter.”
The Equifax breach could give the FTC a platform like none other before to assert itself as the top cop on the cybersecurity beat, a status that has been contested in the courts but shown in the response to other notable hacks.
In December, the FTC joined with state attorneys general to reach a $1.6 million settlement with Ashley Madison, the dating site marketed to those looking to have affairs, over allegations connected to a 2015 data breach that exposed the account information of 36 million users.
A year before that settlement, Wyndham Hotels and Resorts agreed to establish a “comprehensive information security program” to resolve FTC allegations that the hospitality company's cybersecurity shortcomings exposed the payment card information of hundreds of thousands of consumers.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllFTC Probing Use of Browser Histories, Other Personal Info to Individualize Product Prices
4 minute readSuper-Stringent State Health Privacy Law May Spark Similar Statutes Elsewhere
5 minute readHow to Navigate Regulators' Growing Focus on Connecting Data Privacy and Web Design
Marketers Mostly Pleased With FTC Plan to Clean Up High-Stakes World of Online Reviews
6 minute readTrending Stories
- 1Unpaid Real Estate Taxes; License To Enter Adjoining Property: This Week in Scott Mollen’s Realty Law Digest
- 2Baker McKenzie Builds on AI Foundation, Crafting Tools to Help Lawyers Work 'Better, Smarter'
- 3Paul Weiss, Trailblazer for U.S. Firms in China, to Close Beijing Office
- 4Formal Charges Filed Against Judge Accused of Helping Defendant Escape ICE Detention
- 5Top 10 Predicted Business and Human Rights Issues for 2025
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250