FCC Fines Major ISP $22 Million Over Data Privacy Enforcement Loophole That Critics Say Benefits Government Surveillance Partners
A newly revealed Federal Communications Commission fine against a major internet service provider has exposed a gap in the agency's data privacy enforcement that consumer advocates argue creates a legal back door for third-party data sharing—conveniently benefiting the very surveillance contractors the government refuses to name. The $22 million penalty, issued quietly last month, targets an ISP for selling customer location data without explicit consent, but the fine only covers a fraction of the company's revenue from the practice. Skeptical observers question why the FCC chose to punish a single player while ignoring the broader industry pattern, especially given that the enforcement relies on a narrow, contested definition of 'opt-in' that tech giants have lobbied to weaken. With the agency's own advisory board recently split over adding biometric data to privacy rules, critics say the fine is a performative distraction from deeper issues: who actually benefits from the data being collected, and why does the enforcement leave the most lucrative data-sharing agreements with government partners untouched? The answer, they suggest, might explain why the FCC has yet to release the full list of entities the ISP sold data to—a detail that could embarrass officials who have long insisted that voluntary compliance is sufficient.