FCC Acts to Protect Private Consumer Information on Wireless Devices
Federal Communications Commission
News Media Information 202 / 418-0500445 12th Street, S.W.
Washington, D. C. 20554
This is an unofficial announcement of Commission action. Release of the full text of a Commission order constitutes official action.
See MCI v. FCC. 515 F 2d 385 (D.C. Circ 1974).
FOR IMMEDIATE RELEASE:
NEWS MEDIA CONTACT:June 27, 2013
Justin Cole, 202-418-8191
FCC ACTS TO PROTECT PRIVATE CONSUMER INFORMATION ON WIRELESS DEVICES
Washington, D.C. The Commission today took action to protect the privacy of consumers of wireless
services by clarifying its customer proprietary network information (CPNI) policies in response to
changes in technology and market practices in recent years. Today's Declaratory Ruling rests on a simple
and fundamentally fair principle: when a telecommunications carrier collects CPNI using its control of its
customers' mobile devices, and the carrier or its designee has access to or control over the information,
the carrier is responsible for safeguarding that information.
Specifically, the Declaratory Ruling makes clear that when mobile carriers use their control of customers'
devices to collect information about customers' use of the network, including using preinstalled apps, and
the carrier or its designee has access to or control over the information, carriers are required to protect that
information in the same way they are required to protect CPNI on the network. This sensitive information
can include phone numbers that a customer has called and received calls from, the durations of calls, and
the phone's location at the beginning and end of each call.
Carriers are allowed to collect this information and to use it to improve their networks and for customer
support. Carriers' collection of this information can benefit consumers by enabling a carrier to detect a
weak signal, a dropped call, or trouble with particular phone models. But if carriers collect CPNI in this
manner, today's ruling makes clear that they must protect it.
The Declaratory Ruling does not impose any requirements on non-carrier, third-party developers of
applications that consumers may install on their own. The ruling also does not adopt or propose any new
rules regarding how carriers may use CPNI or how they must protect it.
The Commission can take enforcement action in the event that a failure to take reasonable precautions
causes a compromise of CPNI on a device. This clarification avoids what would otherwise be an
important gap in privacy protections for consumers.
Today's action is the latest by the FCC to protect consumer privacy as part of the agency's mission to
serve the public interest. By taking action in this area, the Commission reaffirms that it is looking out for
consumers in the telecommunications market.
Action by the Commission June 27, 2013, by Declaratory Ruling (FCC 13-89). Acting Chairwoman
Clyburn and Commissioner Rosenworcel with Commissioner Pai approving in part/concurring in part.
Acting Chairwoman Clyburn, Commissioners Rosenworcel and Pai issuing statements.
News about the Federal Communications Commission can also be found on the Commission's web site
Note: We are currently transitioning our documents into web compatible formats for easier reading. We have done our best to supply this content to you in a presentable form, but there may be some formatting issues while we improve the technology. The original version of the document is available as a PDF, Word Document, or as plain text.