Federal Communications Commission
FCC 16-39
Before the Federal Communications Commission Washington, D.C. 20554 In the Matter of Protecting the Privacy of Customers of Broadband and Other Telecommunications Services
) ) ) )
WC Docket No. 16-106
NOTICE OF PROPOSED RULEMAKING Adopted: March 31, 2016
Released: April 1, 2016
Comment Date: May 27, 2016 Reply Comment Date: June 27, 2016 By the Commission: Chairman Wheeler and Commissioners Clyburn and Rosenworcel issuing separate statements; Commissioners Pai and O’Rielly dissenting and issuing separate statements. TABLE OF CONTENTS Para. I. INTRODUCTION.................................................................................................................................. 1 II. EXECUTIVE SUMMARY .................................................................................................................. 14 III. ENSURING PRIVACY PROTECTIONS FOR CUSTOMERS OF BROADBAND SERVICES ........................................................................................................................................... 27 A. Defining Key Terms ...................................................................................................................... 28 1. Defining BIAS and BIAS Provider ......................................................................................... 29 2. Defining Affiliate .................................................................................................................... 30 3. Defining Customer .................................................................................................................. 31 4. Defining CPNI in the Broadband Context............................................................................... 38 5. Defining Customer Proprietary Information ........................................................................... 56 6. Defining Personally Identifiable Information ......................................................................... 60 7. Content of Customer Communications ................................................................................... 67 8. Defining Opt-Out and Opt-In Approval .................................................................................. 68 9. Defining Communications-Related Services and Related Terms ........................................... 71 10. Defining Aggregate Customer PI ............................................................................................ 74 11. Defining Breach ...................................................................................................................... 75 12. Other Definitions..................................................................................................................... 78 B. Providing Meaningful Notice of Privacy Policies ......................................................................... 82 1. Privacy Notice Requirements.................................................................................................. 83 2. Providing Notice of Material Changes in BIAS Providers’ Privacy Policies ......................... 96 3. Mobile-Specific Considerations ............................................................................................ 102 4. Harmonizing Notices for Voice, Video, and Broadband Services ........................................ 103 C. Customer Approval Requirements for the Use and Disclosure of Customer PI.......................... 106 1. Types of Approval Required for Use and Disclosure of Customer PI .................................. 109 2. Requirements for Soliciting Customer Opt-Out and Opt-In Approval ................................. 139 3. Documenting Compliance with Proposed Customer Consent Requirements ....................... 149 4. Small BIAS Providers ........................................................................................................... 151
2500