Federal Regulatory Agencies
News releases, reports, statements and associated documents from federal regulatory agencies ranging from the Securities Exchange Commission to the Commodities Futures Trading Commission
Featured Stories
FCC, FTC FORMALIZE ENFORCEMENT PARTNERSHIP FOR PROTECTING THE OPEN INTERNET
WASHINGTON, May 1 -- The Federal Communications Commission issued the following news release:
The Federal Communications Commission and Federal Trade Commission have signed a Memorandum of Understanding to coordinate consumer protection efforts following the FCC's restoration of Net Neutrality. The FCC's recent decision to reclassify broadband service as a Title II telecommunications service allows the FCC to protect consumers, defend national security, and advance public safety.
"Consumers do not want their broadband provider cutting sweetheart deals, with fast lanes for some services and slow
... Show Full Article
WASHINGTON, May 1 -- The Federal Communications Commission issued the following news release:
The Federal Communications Commission and Federal Trade Commission have signed a Memorandum of Understanding to coordinate consumer protection efforts following the FCC's restoration of Net Neutrality. The FCC's recent decision to reclassify broadband service as a Title II telecommunications service allows the FCC to protect consumers, defend national security, and advance public safety.
"Consumers do not want their broadband provider cutting sweetheart deals, with fast lanes for some services and slowlanes for others. They do not want their providers engaging in blocking, throttling, and paid prioritization," said FCC Chairwoman Jessica Rosenworcel. "If consumers have problems, they expect the Nation's expert authority on communications to be able to respond. Now we can. In partnership with our colleagues at the FTC, we will protect consumers and ensure internet openness, defend national security, and monitor network resiliency and reliability. I thank Chair Khan and her team for their leadership and cooperation in protecting consumers."
"The FTC is squarely focused on protecting Americans from illegal business tactics, from tackling AI-enabled voice cloning fraud to fighting the scourge of robocalls. We look forward to continuing to work in close partnership with the FCC," said FTC Chair Lina M. Khan. "Effective law enforcement requires targeting the upstream actors enabling unlawful conduct, and having the FCC as a partner here will be critical."
The FCC will return to its traditional position as the enforcer of essential rules as they apply to broadband service providers, a critical part of telecommunications infrastructure. This includes prohibitions against blocking, throttling, and paid prioritization practices; transparency requirements; consumer protections related to internet service outages; and basic consumer privacy protections which have long applied to phone networks.
The MOU terminates the 2017 Restoring Internet Freedom FCC-FTC Memorandum of Understanding. It clarifies that commitments under prior MOUs, including the 2003 Memorandum of Understanding regarding Telemarketing Enforcement, as well as the 2015 FCC- FTC Consumer Protection Memorandum of Understanding, remain in effect and are not altered or invalidated by the new MOU. The FCC and the FTC will continue to share legal, technical, and investigative expertise and experience.
The FCC's Safeguarding and Securing the Open Internet Order reclassifies broadband internet access service as a Title II common carrier service. It creates a national standard by which the FCC can ensure that broadband internet service is treated as an essential service.
* * *
Original text here: https://docs.fcc.gov/public/attachments/DOC-402253A1.pdf
NRC Issues Event Notification for GE-Hitachi Nuclear Energy Americas, Wilmington, N.C.
WASHINGTON, April 30 -- The Nuclear Regulatory Commission issued the following event notification (No. 57088) involving GE-Hitachi Nuclear Energy Americas LLC, Wilmington, North Carolina:
* * *
Rep Org: Global Nuclear Fuel
Licensee: GE-Hitachi Nuclear Energy Americas, LLC
Region: 2
City: Wilmington
State: NC
License #: SNM-1097
Agreement: Y
NRC Notified By: Ralph Hayes
HQ OPS Officer: Adam Koziol
Notification Date: 04/22/2024
Notification Time: 14:33 [ET]
Event Date: 04/22/2024
Event Time: 00:00 [EDT]
Last Update Date: 04/26/2024
Emergency Class: Non Emergency
10 CFR Section:
21.21(d)(3)(i)
... Show Full Article
WASHINGTON, April 30 -- The Nuclear Regulatory Commission issued the following event notification (No. 57088) involving GE-Hitachi Nuclear Energy Americas LLC, Wilmington, North Carolina:
* * *
Rep Org: Global Nuclear Fuel
Licensee: GE-Hitachi Nuclear Energy Americas, LLC
Region: 2
City: Wilmington
State: NC
License #: SNM-1097
Agreement: Y
NRC Notified By: Ralph Hayes
HQ OPS Officer: Adam Koziol
Notification Date: 04/22/2024
Notification Time: 14:33 [ET]
Event Date: 04/22/2024
Event Time: 00:00 [EDT]
Last Update Date: 04/26/2024
Emergency Class: Non Emergency
10 CFR Section:
21.21(d)(3)(i)- Defects And Noncompliance
Person (Organization): Werkheiser, Dave (R1DO)
Part 21/50.55 Reactors, - (EMAIL)
Betancourt-Roldan, Diana (R3DO)
Warnick, Greg (R4DO)
* * *
EN Revision Imported Date: 4/29/2024
EN Revision Text: PART 21 - FUEL ASSEMBLY SPACER RELOCATION
The following is a summary of information provided by the licensee via email:
Global Nuclear Fuel discovered instances of GNF3 fuel assembly spacers relocating within the fuel bundle. A safety communication was issued in 2022 following the discovery of a raised water rod (WR) at Grand Gulf Nuclear Station. Shutdown inspections in February 2024 at Lasalle identified five spacers out of position. Shutdown inspections at Limerick in April 2024 identified four spacers out of position. Those discoveries prompted this Part 21 report. An evaluation concluded that the relocated spacers could result in a degraded critical power margin, but the evaluation of this condition indicates it will not compromise or greatly reduce protection to public health and safety.
Plants with suspect bundles installed:
Grand Gulf Nuclear Station (Raised WR but no defective spacers)
Lasalle (1 bundle with 5 relocated spacers found)
Limerick (1 bundle with 4 relocated spacers found)
Nine Mile Point (No defects found)
Fermi (No defects found)
Peach Bottom (Shutdown scheduled in Fall 2024)
Fitzpatrick (Shutdown scheduled in Fall 2024)
* * * UPDATE ON 4/26/24 AT 1220 EDT FROM LISA SCHICHLEIN TO ADAM KOZIOL * * *
Updated to correct administrative errors in the summary of defects. Corrections were made above.
Notified R1DO (Werkheiser), R3DO (Betancourt-Roldan), R4DO (Warnick), Part 21/Reactor Group (email)
* * *
Original text here: https://www.nrc.gov/reading-rm/doc-collections/event-status/event/2024/20240429en.html#en57088
NRC Issues Event Notification for Dow Chemical, Midland, Mich.
WASHINGTON, April 30 -- The Nuclear Regulatory Commission issued the following event notification (No. 57059) involving Dow Chemical, Midland, Michigan:
* * *
Rep Org: Dow Chemical
Licensee: Dow Chemical
Region: 3
City: Midland
State: MI
License #: 21-00265-06
Agreement: N
NRC Notified By: Kelly Wegener-Gave
HQ OPS Officer: Adam Koziol
Notification Date: 03/28/2024
Notification Time: 12:55 [ET]
Event Date: 03/27/2024
Event Time: 11:01 [EDT]
Last Update Date: 04/26/2024
Emergency Class: Non Emergency
10 CFR Section:
30.50(b)(1) - Unplanned Contamination
Person (Organization):
... Show Full Article
WASHINGTON, April 30 -- The Nuclear Regulatory Commission issued the following event notification (No. 57059) involving Dow Chemical, Midland, Michigan:
* * *
Rep Org: Dow Chemical
Licensee: Dow Chemical
Region: 3
City: Midland
State: MI
License #: 21-00265-06
Agreement: N
NRC Notified By: Kelly Wegener-Gave
HQ OPS Officer: Adam Koziol
Notification Date: 03/28/2024
Notification Time: 12:55 [ET]
Event Date: 03/27/2024
Event Time: 11:01 [EDT]
Last Update Date: 04/26/2024
Emergency Class: Non Emergency
10 CFR Section:
30.50(b)(1) - Unplanned Contamination
Person (Organization):Edwards, Rhex (R3DO)
NMSS_EVENTS_NOTIFICATION (EMAIL)
* * *
EN Revision Imported Date: 4/29/2024
EN Revision Text: UNPLANNED CONTAMINATION
The following information was provided by the licensee via telephone:
On March 27, 2024, at 1101 EDT, a sample containing 20.3 mCi of carbon-14 (C-14) in 1,3-Dichloropropene liquid form (348 microliters) was dropped when being removed from a storage container. The authorized user immediately called for assistance and restricted access to the laboratory where the spill occurred. Decontamination efforts began immediately after the incident, and it was confirmed that the contamination was contained to the laboratory where the spill occurred. It was determined on March 28, 2024, at 1025 EDT that restrictions would remain in place greater than 24 hours, and that this incident was reportable under 10 CFR 30.50(b)(1).
Following the spill, a nasal swab was taken of the worker with no detectable activity, however, a urine bioassay taken the following day indicated a potential internal dose of 213 mrem. No other staff were exposed, and there was no risk to public safety or the environment.
The applicable 10 CFR 20 Appendix B annual limit for intake for C-14 is 2000 microcuries.
Decontamination efforts will continue until detectable surface contamination is less than 1000 dpm/100 square centimeters.
* * * UPDATE ON 4/26/24 AT 1609 EDT FROM KELLY WEGENER-GAVE TO ADAM KOZIOL * * *
The licensee submitted a 30-day written report for this event.
Notified R3DO (Betancourt-Roldan) and NMSS Events (email).
* * *
Original text here: https://www.nrc.gov/reading-rm/doc-collections/event-status/event/2024/20240429en.html#en57059
NRC Issues Event Notification for Arconic Davenport, Bettendorf, Iowa
WASHINGTON, April 30 -- The Nuclear Regulatory Commission issued the following event notification (No. 57087) involving Arconic Davenport LLC, Bettendorf, Iowa:
* * *
Rep Org: Iowa Department of Public Health
Licensee: Arconic Davenport, LLC
Region: 3
City: Bettendorf
State: IA
License #: 0162182FG
Agreement: Y
NRC Notified By: Stuart Jordan
HQ OPS Officer: Thomas Herrity
Notification Date: 04/22/2024
Notification Time: 15:46 [ET]
Event Date: 04/22/2024
Event Time: 00:00 [CDT]
Last Update Date: 04/22/2024
Emergency Class: Non Emergency
10 CFR Section:
Agreement State
Person (Organization):
... Show Full Article
WASHINGTON, April 30 -- The Nuclear Regulatory Commission issued the following event notification (No. 57087) involving Arconic Davenport LLC, Bettendorf, Iowa:
* * *
Rep Org: Iowa Department of Public Health
Licensee: Arconic Davenport, LLC
Region: 3
City: Bettendorf
State: IA
License #: 0162182FG
Agreement: Y
NRC Notified By: Stuart Jordan
HQ OPS Officer: Thomas Herrity
Notification Date: 04/22/2024
Notification Time: 15:46 [ET]
Event Date: 04/22/2024
Event Time: 00:00 [CDT]
Last Update Date: 04/22/2024
Emergency Class: Non Emergency
10 CFR Section:
Agreement State
Person (Organization):Betancourt-Roldan, Diana (R3DO)
NMSS_EVENTS_NOTIFICATION (EMAIL)
* * *
AGREEMENT STATE REPORT - SHUTTER STUCK PARTIALLY OPEN
The following was received from the Iowa Department of Public Health - Bureau of Radiological Health (Iowa HHS) via email:
"Arconic Davenport possesses an IMS Measuring System (model 5221-02 profile thickness gauge) for measuring thickness of aluminum on the production line. The C-frame gauge contains five independent source housings, with each housing containing a 5 curie, americium-241, sealed source. The C-frame gauge is constructed from steel and is suspended from a monorail which allows the device to be moved offline to a restricted access calibration area. The shutter [on each source] is opened and closed by a pneumatic cylinder that is controlled from a remote location.
"On the morning of April 22, 2024, it was determined that shutter number 1 of the C-frame gauge B had failed to fully close. This was determined [during] an automated attempt to close all 5 shutters on the gauge, and the computer indicated that shutter number 1 was not fully closed. Per the licensee's procedures, the C-frame gauge was removed from the line using the monorail to the secured calibration house. Radiation surveys of the outside wall adjacent to the shutter 1 position were above background with a maximum dose rate of 0.1 mR/hr.
"The licensee has contacted their service provider to perform repair work (identify and fix the equipment problem) which is tentatively scheduled for same day or April 23, 2024. No reported overexposures have occurred because of this incident, no release or contamination of radioactive material occurred because of this incident (most recent negative leak test was November 2, 2023), and Iowa HHS will update this report once additional information is provided (cause, corrective actions, etc.)."
IA Event Number: IA240002
* * *
Original text here: https://www.nrc.gov/reading-rm/doc-collections/event-status/event/2024/20240429en.html#en57087
FCC FINES AT&T, SPRINT, T-MOBILE, AND VERIZON NEARLY $200 MILLION FOR ILLEGALLY SHARING ACCESS TO CUSTOMERS' LOCATION DATA
WASHINGTON, April 30 -- The Federal Communications Commission issued the following news release on April 29, 2024:
Today, the Federal Communications Commission fined the nation's largest wireless carriers for illegally sharing access to customers' location information without consent and without taking reasonable measures to protect that information against unauthorized disclosure. Sprint and T-Mobile - which have merged since the investigation began - face fines of more than $12 million and $80 million, respectively. AT&T is fined more than $57 million, and Verizon is fined almost $47 million.
"Our
... Show Full Article
WASHINGTON, April 30 -- The Federal Communications Commission issued the following news release on April 29, 2024:
Today, the Federal Communications Commission fined the nation's largest wireless carriers for illegally sharing access to customers' location information without consent and without taking reasonable measures to protect that information against unauthorized disclosure. Sprint and T-Mobile - which have merged since the investigation began - face fines of more than $12 million and $80 million, respectively. AT&T is fined more than $57 million, and Verizon is fined almost $47 million.
"Ourcommunications providers have access to some of the most sensitive information about us. These carriers failed to protect the information entrusted to them. Here, we are talking about some of the most sensitive data in their possession: customers' real-time location information, revealing where they go and who they are," said FCC Chairwoman Jessica Rosenworcel. "As we resolve these cases - which were first proposed by the last Administration - the Commission remains committed to holding all carriers accountable and making sure they fulfill their obligations to their customers as stewards of this most private data."
The FCC Enforcement Bureau investigations of the four carriers found that each carrier sold access to its customers' location information to "aggregators," who then resold access to such information to third-party location-based service providers. In doing so, each carrier attempted to offload its obligations to obtain customer consent onto downstream recipients of location information, which in many instances meant that no valid customer consent was obtained. This initial failure was compounded when, after becoming aware that their safeguards were ineffective, the carriers continued to sell access to location information without taking reasonable measures to protect it from unauthorized access.
Under the law, including section 222 of the Communications Act, carriers are required to take reasonable measures to protect certain customer information, including location information. Carriers are also required to maintain the confidentiality of such customer information and to obtain affirmative, express customer consent before using, disclosing, or allowing access to such information. These obligations apply equally when carriers share customer information with third parties.
"The protection and use of sensitive personal data such as location information is sacrosanct," said Loyaan A. Egal, Chief of the FCC Enforcement Bureau and Chair of its Privacy and Data Protection Task Force. "When placed in the wrong hands or used for nefarious purposes, it puts all of us at risk. Foreign adversaries and cybercriminals have prioritized getting their hands on this information, and that is why ensuring service providers have reasonable protections in place to safeguard customer location data and valid consent for its use is of the highest priority for the Enforcement Bureau."
The investigations that led to today's fines started following public reports that customers' location information was being disclosed by the largest American wireless carriers without customer consent or other legal authorization to a Missouri Sheriff through a "location-finding service" operated by Securus, a provider of communications services to correctional facilities, to track the location of numerous individuals. Yet, even after being made aware of this unauthorized access, all four carriers continued to operate their programs without putting in place reasonable safeguards to ensure that the dozens of location-based service providers with access to their customers' location information were actually obtaining customer consent.
The Forfeiture Orders announced today finalize Notices of Apparent Liability (NAL) issued against these carriers in February 2020. The fine amount for AT&T and Sprint are unchanged since the NAL stage. Both the T-Mobile and Verizon fines were reduced following further review of the parties' submissions in response to the NALs. The law does not permit forfeiture amounts for specified violations to escalate after issuance of an NAL.
The Forfeiture Orders are available here:
* AT&T, Inc. Forfeiture Order: https://www.fcc.gov/document/fcc-fines-att-57m- location-data-violations
* Sprint Corporation Forfeiture Order: https://www.fcc.gov/document/fcc-fines-sprint- 12m-location-data-violations
* T-Mobile USA, Inc. Forfeiture Order: https://www.fcc.gov/document/fcc-fines-t- mobile-80m-location-data-violations
* Verizon Communications Forfeiture Order: https://www.fcc.gov/document/fcc-fines- verizon-46m-location-data-violations
In 2023, the Chairwoman established the Privacy and Data Protection Task Force, an FCC staff working group focused on coordinating across the agency on the rulemaking, enforcement, and public awareness needs in the privacy and data protection sectors, including data breaches (such as those involving telecommunications providers) and vulnerabilities involving third- party vendors that service regulated communications providers. More information on the Task Force is available at: https://www.fcc.gov/privacy-and-data-protection-task-force.
* * *
Original text here: https://docs.fcc.gov/public/attachments/DOC-402213A1.pdf
FCC Commissioner Simington Issues Dissent on Sprint
WASHINGTON, April 30 -- The Federal Communications Commission issued the following dissent on April 29, 2024, by Commissioner Nathan Simington on an action entitled "In the Matter of Sprint Corporation, Forfeiture Order" (File No.: EB-TCD-18-00027700).
* * *
Today, each of the major national mobile network operators faces a forfeiture for its purported failure to secure the confidentiality of its customer proprietary network information ('CPNI') as it relates to location information of network user devices. While the facts of each alleged violation are somewhat different, the enforcement calculation
... Show Full Article
WASHINGTON, April 30 -- The Federal Communications Commission issued the following dissent on April 29, 2024, by Commissioner Nathan Simington on an action entitled "In the Matter of Sprint Corporation, Forfeiture Order" (File No.: EB-TCD-18-00027700).
* * *
Today, each of the major national mobile network operators faces a forfeiture for its purported failure to secure the confidentiality of its customer proprietary network information ('CPNI') as it relates to location information of network user devices. While the facts of each alleged violation are somewhat different, the enforcement calculationmethodology used to arrive at the forfeitures is shared. Because I am concerned principally with that issue, together with what I view as a significant and undesirable policy upshot common across the actions that the Commission takes today, I will draft one dissent.
There is no valid basis for the arbitrary and capricious finding--enunciated in the Commission's erroneous rationale in TerraCom Inc. and YourTel America, Inc., Notice of Apparent Liability for Forfeiture, 29 FCC Rcd 13325 (2014) ('TerraCom') and relied upon today--that a single, systemic failure to follow the Commission's rules (in that case, violations of sections 201(b) and 222(a) of the Act; here, a violation of section 64.2010 of the Rules) may constitute however many separate and continuing violations the Commission chooses to find on the basis of the whole-cloth creation of a novel legal ontology. In TerraCom--which was resolved by consent decree and never proceeded to a forfeiture order--the Commission found that each customer record exposed by a single insecure data protection method (some 305,065 records) could be treated as having formed a separate and continuing violation. Here, the Commission purports to count individual location-based services providers ('LBS') and aggregators relied upon by each mobile network operator to arrive at its separate and distinct continuing violations.
Whether counting individual exposed customer records or LBS providers and aggregators, the clear effect of the Commission's arbitrary selection of a violation class used to increase the number violations emerging from a single act or failure to act of a regulatee alleged to be in violation of our rules is to exceed our section 503 statutory authority. Here it cannot credibly be argued that any of the mobile network operators, in operating an LBS/aggregator program, committed more than one act relevant for the purposes of forfeiture calculation. It is simply not plausible that Congress intended that the Commission may arrive at forfeitures of any size simply by disaggregating an "act" into its individual constituent parts, counting the members of whatever class of objects may be related to the alleged violation to arrive at whatever forfeiture amount suits a preordained outcome. In this case we exceed our statutory maximum forfeiture by a factor of, in some cases, dozens; in TerraCom, we asserted the right to exceed it by thousands.
What's more, the Commission ought to act prudentially here: even assuming, purely arguendo, that location-based CPNI were illicitly exposed, let us not forget that, at every moment, any of thousands of unregulated apps may pull GPS location information, Wi-Fi and Bluetooth signal strength, and other fragments of data indicating location from customer handsets at every moment the device is on. Indeed, this can be, and routinely is, accomplished even without consumer permission. By sending a strong market signal that any alleged violation of Commission rules regarding CPNI safekeeping (whether or not the rules actually were violated) can and will result in an outsize fine, we have effectively choked off one of the only ways that valid and legal users of consent-based location data services had to access location data for which legal safeguards and oversight actually exist.
It was available for the Commission to work with the carriers to issue consent decrees to promote best practices to develop further safeguards around location-based and aggregation services, and to actively monitor ongoing compliance in an effort to vouchsafe a regulated means of consensually sharing handset location data with legitimate users of the same. We opt, instead, to appear "tough on crime" in a way that actually reduces consumer data privacy by pushing legitimate users of location data toward unregulated data brokerage. Accordingly, I dissent.
* * *
Original text here: https://docs.fcc.gov/public/attachments/FCC-24-42A4.pdf
FCC Commissioner Simington Issues Dissent on AT&T
WASHINGTON, April 30 -- The Federal Communications Commission issued the following dissent on April 29, 2024, by Commissioner Nathan Simington on an action entitled "In the Matter of AT&T Inc., Forfeiture Order" (File No.: EB-TCD-18-00027704).
* * *
Today, each of the major national mobile network operators faces a forfeiture for its purported failure to secure the confidentiality of its customer proprietary network information ('CPNI') as it relates to location information of network user devices. While the facts of each alleged violation are somewhat different, the enforcement calculation methodology
... Show Full Article
WASHINGTON, April 30 -- The Federal Communications Commission issued the following dissent on April 29, 2024, by Commissioner Nathan Simington on an action entitled "In the Matter of AT&T Inc., Forfeiture Order" (File No.: EB-TCD-18-00027704).
* * *
Today, each of the major national mobile network operators faces a forfeiture for its purported failure to secure the confidentiality of its customer proprietary network information ('CPNI') as it relates to location information of network user devices. While the facts of each alleged violation are somewhat different, the enforcement calculation methodologyused to arrive at the forfeitures is shared. Because I am concerned principally with that issue, together with what I view as a significant and undesirable policy upshot common across the actions that the Commission takes today, I will draft one dissent.
There is no valid basis for the arbitrary and capricious finding--enunciated in the Commission's erroneous rationale in TerraCom Inc. and YourTel America, Inc., Notice of Apparent Liability for Forfeiture, 29 FCC Rcd 13325 (2014) ('TerraCom') and relied upon today--that a single, systemic failure to follow the Commission's rules (in that case, violations of sections 201(b) and 222(a) of the Act; here, a violation of section 64.2010 of the Rules) may constitute however many separate and continuing violations the Commission chooses to find on the basis of the whole-cloth creation of a novel legal ontology. In TerraCom--which was resolved by consent decree and never proceeded to a forfeiture order--the Commission found that each customer record exposed by a single insecure data protection method (some 305,065 records) could be treated as having formed a separate and continuing violation. Here, the Commission purports to count individual location-based services providers ('LBS') and aggregators relied upon by each mobile network operator to arrive at its separate and distinct continuing violations.
Whether counting individual exposed customer records or LBS providers and aggregators, the clear effect of the Commission's arbitrary selection of a violation class used to increase the number violations emerging from a single act or failure to act of a regulatee alleged to be in violation of our rules is to exceed our section 503 statutory authority. Here it cannot credibly be argued that any of the mobile network operators, in operating an LBS/aggregator program, committed more than one act relevant for the purposes of forfeiture calculation. It is simply not plausible that Congress intended that the Commission may arrive at forfeitures of any size simply by disaggregating an "act" into its individual constituent parts, counting the members of whatever class of objects may be related to the alleged violation to arrive at whatever forfeiture amount suits a preordained outcome. In this case we exceed our statutory maximum forfeiture by a factor of, in some cases, dozens; in TerraCom, we asserted the right to exceed it by thousands.
What's more, the Commission ought to act prudentially here: even assuming, purely arguendo, that location-based CPNI were illicitly exposed, let us not forget that, at every moment, any of thousands of unregulated apps may pull GPS location information, Wi-Fi and Bluetooth signal strength, and other fragments of data indicating location from customer handsets at every moment the device is on. Indeed, this can be, and routinely is, accomplished even without consumer permission. By sending a strong market signal that any alleged violation of Commission rules regarding CPNI safekeeping (whether or not the rules actually were violated) can and will result in an outsize fine, we have effectively choked off one of the only ways that valid and legal users of consent-based location data services had to access location data for which legal safeguards and oversight actually exist.
It was available for the Commission to work with the carriers to issue consent decrees to promote best practices to develop further safeguards around location-based and aggregation services, and to actively monitor ongoing compliance in an effort to vouchsafe a regulated means of consensually sharing handset location data with legitimate users of the same. We opt, instead, to appear "tough on crime" in a way that actually reduces consumer data privacy by pushing legitimate users of location data toward unregulated data brokerage. Accordingly, I dissent.
* * *
Original text here: https://docs.fcc.gov/public/attachments/FCC-24-40A4.pdf