Welcome to the tech policy podcast. I'm Ashkin Kazarian. Today we're going to dive into

a landmark case for the internet, the lab MD case. At the issue is how much leeway the

FTC will have in regulating the internet from data security to product design to any number of

other emerging issues. Joining me is Tech Freedom's president, Baron Soka. Berrin, thank you for coming.

Thanks for having me. And our legal fellow, Graham Owens, Graham, thank you for joining the show.

Thank you for having me. All right, gentlemen. So why don't you tell our listeners what this case is

about? What's the background?

So essentially since 2002, absent any sort of statutory framework of any comprehensive nature over data security and privacy practices at companies, the FTC has taken over policing companies practices in that area.

And since that time, the FTC's brought about 60 to 70 enforcement actions against companies

for unfair or deceptive data security and privacy practices.

Yet only two of those have actually ever made it to court.

It's 60 to 70 data security plus a bunch of other privacy cases and then some mixed cases.

The two that actually made to court, the first one was Wendom Worldwide, incorporated,

a hotel chain, a Fortune 500 company, the Mints resources.

They're not exactly what we call a sympathetic defendant.

And in that case, you know, they failed to take really even the most basic precautions to

protecting the consumer's data.

And so that case went through and ultimately the Wyndham as unsympathetic, ultimately

decided to settle.

So essentially that leaves us with only the case before us,

which was LabmD, which... And critically, Wyndham settled very early on in their appellate litigation.

Wyndham had spent $5 million just responding to the FTC's discovery request. That gives you a sense

...