????聯(lián)邦貿(mào)易委員會對大多數(shù)消費者數(shù)據(jù)保護(hù)案件的權(quán)力來自《聯(lián)邦貿(mào)易委員會法案》（the F.T.C. Act），但該法并未賦予聯(lián)邦貿(mào)易委員會對涉事公司征收罰款的權(quán)力。相反，聯(lián)邦貿(mào)易委員會通常會要求涉事公司升級安全系統(tǒng)、經(jīng)常接受第三方審計機構(gòu)的安全性審計，并且承諾20年內(nèi)不再對安全問題做出虛報、誤報。

????為了加大打擊力度，近日聯(lián)邦貿(mào)易委員會要求國會通過立法賦予它對數(shù)據(jù)安全案件進(jìn)行經(jīng)濟處罰的權(quán)力——實際上聯(lián)邦貿(mào)易委員會對企業(yè)的許多其它違法違規(guī)行為都有征收罰款的權(quán)力。最近提交的一個參議院法案就添加了這樣一個條款。除了聯(lián)邦貿(mào)易委員會以外，各州總檢察官有時也會因為企業(yè)安全措施不到位而對企業(yè)進(jìn)行懲罰。

????聯(lián)邦貿(mào)易會在數(shù)據(jù)安全性上的監(jiān)管對象并不包括銀行，銀行在這個問題上主要受聯(lián)邦存款保險公司（Federal Deposit Insurance Corporation）等機構(gòu)管轄。銀行也經(jīng)常成為黑客們的目標(biāo)。比如去年黑客們侵入了花旗集團（Citigroup）的電腦系統(tǒng)，竊取了20多萬名信用卡持有人的信息。

????譯者：樸成奎

????The F.T.C.'s authority for most consumer data protection cases comes from the F.T.C. Act, and does not include the ability to levy financial penalties. Rather, the agency usually requires companies to upgrade their security, undergo regular security audits from a third-party and promise to make no more misrepresentations for 20 years.

????To give it greater teeth, the F.T.C. recently asked Congress for legislation that would allow it to impose financial penalties in data security cases - much like the agency already does for other types of corporate misbehavior. A Senate bill was recently introduced with such a provision. In addition to the F.T.C., the various state attorneys general sometimes punish companies for insufficient security.

????The F.T.C.'s oversight of data security does not include banks, which are instead regulated by the Federal Deposit Insurance Corporation, among others. Hackers frequently target banks, and last year, for instance, gained access to the computer system of Citigroup and stole information from more than 200,000 credit card holders.