CFPB Fines Online Payment Network for Misrepresenting Security Practices
On March 2, 2016, the CFPB issued its first enforcement action directed at an organization’s information security practices. Dwolla, Inc., entered into a Consent Order with the CFPB which identifies “deceptive acts and practices relating to false representations” relating to the company’s data security practices in violation of UDAAP.