360° Coverage : When The Government Closes Your Business

10 Updates
When The Government Closes Your Business

When The Government Closes Your Business

Feb 1 2014, 6:04pm CST | by

“The rules are the rules.”  Health Department Official in Madison County, Ill., after forcing the closure of 11-year-old Chloe Stirling’s cupcake business this week. This week I interviewed Michael...

Filed under: news

 
 
 

25 weeks ago

When The Government Closes Your Business

Feb 1 2014, 6:04pm CST | by

“The rules are the rules.”  Health Department Official in Madison County, Ill., after forcing the closure of 11-year-old Chloe Stirling’s cupcake business this week.

This week I interviewed Michael J. Daugherty, author of “The Devil Inside The Beltway ,” an expose on federal government overreach into cybersecurity and small business.

For those unaware of the case, Daugherty is the founder of LabMD, an Atlanta-based medical testing laboratory that has been caught up in a four-year-long battle with the FTC. Days ago, the company issued a press release: Following a 4:0 vote by the FTC on January 16 to reject LabMD’s motion to dismiss an August 2013 complaint against the facility, the company announced that it has begun the process of winding down. The book documents the company’s saga. While it’s highly specific to the FTC battle, Daugherty’s experience as a founder is also a sobering story for any business owner to read.

Daugherty opened LabMD 18 years ago, in 1996. The lab operated as a small business of 20-some employees and analyzed blood, urine and tissue samples for cancer, micro-organisms and tumor markers. The nightmare began like most any misadventure in business: a company spreadsheet showed up in a research project on accidental data leakage.  Somehow, the company’s database of private client information had escaped the firewall boundary. Upon investigation, the company discovered the unwitting culprit: an employee had downloaded LimeWire, a peer-to-peer sharing program, onto a company workstation to listen to music files during work. The peer sharing protocol, of course, created the means for sensitive client data to leave the network as well.

Yes, it was a serious issue and one that required corrective action. New security measures. Stronger employee procedures. Penalties, perhaps. Even fines.

But LabMD’s nightmare had only begun. What makes the LabMD story interesting is that the company has actually never been charged with a HIPAA violation (the federal government’s privacy regulation that governs who can look at and receive an individual’s private health information.) Instead, LabMD became one of a set of companies aggressively pursued by the Federal Trade Commission (FTC) for allegations of failure to protect sensitive client information, not as a HIPAA violation, but as a “deceptive and unfair trade practice.”

The difference is monumental, Daugherty says: “The IRS has rules. The SEC has regulations that a company must follow. But with the FTC—we’re dealing with a requirement to somehow ‘meet regulation’ in an arena where no clear rules or regulations exist.”

Two years of aggressive discovery ensued. The FTC issued a 12-page Civil Investigative Demand (CID) letter that required LabMD and several other companies affected to provide detailed information on every aspect of their computer systems and organization practice: What data was stored on each computer? What were the personal firewalls and routers used? How did a peer-to-peer program get onto the network? When did executives discover the P2P program? How did they inform their clients when the discovery was made? Mountains of depositions were conducted, with both current and former employees required to fly to Washington, D.C. to respond.

Finally, in August 2013, the FTC filed a formal complaint against LabMD, requiring, among other things, that the company institute a comprehensive information security program and submit to third party security audits twice yearly for the next 20 years. In other data breach cases, the FTC has targeted dozens of companies and almost all have taken the path of least resistance and settled charges rather than fighting in court, said Craig A. Newman, Managing Partner of the New York law firm Richards Kibbe & Orbe LLP and a cybersecurity expert.   (Newman does not represent Daugherty or LabMD, but discussed the case earlier this week with The Wall Street Journal).  Newman noted that the terms of FTC consent decrees have included requiring companies to adopt revised privacy and data security policies as well as data monitoring for up to 20 years.

Through a private watchdog group, Cause of Action (CoA), Daugherty and LabMD attempted to fight the FTC’s authority to regulate data security practices. In most cases, Daugherty notes, larger organizations have simply conceded and succumbed to fines as a means to survive. In a notable exception, hotel chain Wyndham Worldwide Corp is engaged in litigation in federal court, also challenging the FTC’s authority to regulate data security, according to Newman.  “These challenges to the FTC’s jurisdiction will not be resolved anytime soon and are destined for future appeals.”

When the government comes knocking at small business’ door, is throwing in the towel the only alternative? In his interview with me, Daugherty offered the following words of advice:

  1. As a small company, especially, document everything. Bear in mind, Daugherty cautions, that small businesses are informal environments where decisions tend to be made by “conversations as you walk down the hall.” But to increase your safety in an environment of regulation you should document every step and every decision to a degree that it would be understandable to even a stranger. Every operational procedure. Every technology purchase. The blueprint of the network. This is an arena where electronic alternatives or reliable services that specialize in governance can be especially helpful in keeping any potential for exposure (to theft or to liability) to the greatest minimum that you can.
  2. Get a comprehensive data security program in place. Unfortunately, Daughetry acknowledges, while alternatives such as Websense are suitable for mid to large organizations, very few truly comprehensive data security alternatives for smaller organizations exist. This means, however, an opportunity for aspiring entrepreneurs to develop increasingly better security alternatives that can keep a smaller organization compliant and safe where issues such as HIPAA regulation are concerned. However, as I have previously reported, cyber theft of every kind is an increasingly prevalent risk for small business, who can do much to increase their safety through even the small and straightforward steps such as applying malware and security software and putting sufficient physical access and password protection in place.
  3. Consider the implications – all of the implications – of staffing and outsourcing. How does a company’s liability shift when it employs directly versus work fulfillment through an external agency? In addition to macro issues such as FTC and SEC regulations, companies need to consider the implications of decisions such as whether they store client data (and particularly data such as medical records) on site or whether they outsource to the cloud. If you outsource, where is the cloud located? What is your company’s liability? Likewise, what is your liability for the actions of employees who are under your employ as opposed to those you engage through outside services? You should research these alternatives with care in advance.
  4. Be a savvy business “consumer”.  Every business owner must stay abreast of the changing regulatory climates that affect their industries and business, Daugherty says. A rapidly evolving environment presents a need (and also the opportunity) to stay nimble in working not only to keep your organization as safe as possible, but to capitalize on the opportunities to meet new market needs. For example, for better or worse, changing or increasing regulation creates a greater need and demand for services that can help other businesses to stay educated and to remain abreast and compliant in conjunction with change.

Most importantly of all, in Daugherty’s opinion, is the need for small businesses in the U.S. to get involved in the regulatory issues that affect them directly. As an immediate step, work with your local Chamber of Commerce, he recommends. (Nationally, the Chamber of Commerce is one of the organizations getting strongly involved in the issue of overreach by the FTC.) Contact your congressional leaders and let them know your feelings about the undue (and even unfair) restrictions the current regulatory environment is forcing your business to face. In all, a heavy regulatory environment enforces scenarios on small business that by anybody’s estimations are unjust. However, companies must be extremely careful of their responsibility to every restriction—as frustrating as it is to be felled by an unclear or an unfair environment, an entrepreneur should be doubly careful to avoid tripping in the regulatory arenas where specific rules exist.

For example, I mentioned to Daugherty the experience of a former close associate whose tangle with the IRS effectively felled his first business. As notices arrived that claimed he’d under-withheld on employee taxes he gamely tried to comply. Ultimately, convinced he was correct and had done all he could do to serve the complaint he began to ignore the notices. It was a bad plan: some time later he walked into the business one day to find the company’s accounts had been frozen. His operation had been forced to a halt. In the denouement, he recalls the ultimate agony: “When they had eventually combed through every detail of my business, I found out the last thing I wanted to hear. Turns out they were right.” The system was cumbersome, but his nightmare was an outcome that could have been avoided.

In other cases, it’s attention in the press (ironically) that can kick off a fledgling company’s woes: Consider the case in this week’s news of 11-year-old Chloe Stirling, of Illinois. This aspiring young girl recently started a cupcake business in the family kitchen with the goal of earning enough money to eventually purchase a car and perhaps to ultimately open a bakery. Her family was careful to ensure all license and compliance issues were covered, even purchasing a small refrigerator for Chloe where her ingredients and batter are kept. The trouble began when a local news agency, inspired by her story, ran a news segment to highlight her efforts to contribute her wares to fundraising efforts for cancer. The story caught the eye of the local Madison County Health department officials who ruled that unless the family builds a separate kitchen that it dedicates entirely to the business or purchases a commercial bakery, the venture must stop. (This story is still in progress as Chloe’s plight is now making headlines in the national news.)

In Daugherty’s case, after 25 years in the medical industry, his work at LabMD is winding down to a close. His disappointment in the system is palpable and the weariness of the “uphill fight” is clear in his voice. However, in the aftermath of his battle he is discovering a new career. He is increasingly involving himself in public activism, particularly as it pertains to the FTC. The Devil Inside The Beltway is premiering to positive reviews. For now, at least, Daugherty’s story is making national headlines (for an ongoing look at his progress, readers can visit www.michaeljdaugherty.com). He is also in demand as a keynote speaker.

Do you agree or disagree with Michael Daugherty’s approach to his battle with the FTC? What are your own experiences with business survival in in environment of heavy and unclear regulation? I look forward to hearing your thoughts.

Best Places On Earth To Run A Business

Source: Forbes Business

 
Update
10

7 weeks ago

RM47mil KWSG contributions still unclaimed

Jun 9 2014 7:54am CDT | Source: Business Times Malaysia

KUALA LUMPUR: About RM47 million of contributions in the Teachers Provident Fund (KWSG) still remain unclaimed, the Dewan Rakyat was told to ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
9

7 weeks ago

Gold shop lost almost RM1mil

Jun 9 2014 3:50am CDT | Source: Business Times Malaysia

KANGAR: A gold shop owner lost almost RM1 million after after the safe on in his shop was broken into by robbers. ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
8

7 weeks ago

Motion to debate MAS losses in Dewan Rakyat rejected

Jun 9 2014 3:39am CDT | Source: Business Times Malaysia

KUALA LUMPUR: AN emergency motion to debate the losses incurred by Malaysia Airlines last year, amounting to RM1.2 billion was rejected by the Dewan ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
7

7 weeks ago

MH370 Tragedy: Hisham: RM27.6 mil spent on 1st phase of SAR

Jun 9 2014 2:11am CDT | Source: Business Times Malaysia

KUALA LUMPUR: Malaysia spent some RM27.6 million in its first phase of the search operations for missing Malaysia Airline flight MH370, said Acting Transport Minister, Datuk Seri Hishammudd ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
6

7 weeks ago

9.1m litres of diesel seized in a month

Jun 8 2014 1:11am CDT | Source: Business Times Malaysia

PUTRAJAYA: The Domestic Trade, Cooperatives, and Consumerism ministry has seized some 9.1 million litres of diesel and property worth RM58 million since mounting ‘Operasi Diesel Selatan’ in the southern states ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
5

7 weeks ago

Girl, 9, awarded RM2.78m compensation for medical negligence

Jun 6 2014 4:56am CDT | Source: Business Times Malaysia

KUALA LUMPUR: A nine-year-old girl who suffered brain damage during her birth at a government hospital was awarded over RM2.78 million in compensation ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
4

7 weeks ago

Malaysia's total trade in April up 12pc

Jun 5 2014 11:52pm CDT | Source: Business Times Malaysia

KUALA LUMPUR: Malaysia's total trade in April 2014 rose by 12 per cent from a year ago to RM123.86 billion due to growing trading activities, International Trade and Industry M ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
3

8 weeks ago

Works Ministry to spend RM20m for upgrading works at 50 accident black spots

Jun 4 2014 11:35pm CDT | Source: Business Times Malaysia

JOHOR BARU: The Works Ministry will implement upgrading works at 50 accident prone locations in the country that have been identified this year involving an allocation ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
2

8 weeks ago

Najib launches loan scheme for Ramadan traders

Jun 4 2014 10:24pm CDT | Source: Business Times Malaysia

PUTRAJAYA: Prime Minister Datuk Seri Najib Razak today launches RM45 million Ramada ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 
Update
1

8 weeks ago

Residents bring up objection against Kidex to Suhakam

Jun 4 2014 4:49am CDT | Source: Business Times Malaysia

PETALING JAYA: A group of 20 Petaling Jaya residents held a meeting with the Human Rights Commission of Malaysia (Suhakam) over their objection against the proposed RM2.2 billion Kinrara Damansara Skyway (Kidex) ...
Source: Business Times Malaysia   Full article at: Business Times Malaysia
 

 

Don't miss ...

 

<a href="/latest_stories/all/all/30" rel="author">Forbes</a>
Forbes is among the most trusted resources for the world's business and investment leaders, providing them the uncompromising commentary, concise analysis, relevant tools and real-time reporting they need to succeed at work, profit from investing and have fun with the rewards of winning.

 

blog comments powered by Disqus

Latest stories

Watch your waistline for diabetes risk
London, Aug 1 (IANS) A British health report has warned that adults with a large waistline are five times more likely to develop type 2 diabetes.
 
 
Now SEPA to facilitate euro payments
Brussels, Aug 1 (IANS) The European Commission said Thursday that the Single Euro Payments Area (SEPA) would become fully operational in all euro zone countries from Aug 1, 2014 onwards.
 
 
Ebola outbreak: $100 mn response plan in West Africa
Geneva, Aug 1 (IANS) The director-general of the World Health Organisation (WHO) and presidents of West African countries hit by the Ebola virus outbreak will Friday meet in Guinea to launch a new $100 million response plan.
 
 
OPEC daily basket price closes lower
Vienna, July 31 (IANS) The basket of 12 crude oils of the Organization of Petroleum Exporting Countries (OPEC) stood at $105.21 a barrel Wednesday, against $105.44 Tuesday, according to the OPEC Secretariat.
 
 
 

Latest from the Network

Watch your waistline for diabetes risk
London, Aug 1 (IANS) A British health report has warned that adults with a large waistline are five times more likely to develop type 2 diabetes. In its report, the Public Health England (PHE), an executive agency of...
Read more on Business Balla
 
Mexico, California to build new border crossing
Mexico City, Aug 1 (IANS) Mexico and the US state of California agreed Thursday to build a new vehicle border crossing to help boost trade, Mexican authorities said. Vice Minister Raul Murrieta Cummings and the...
Read more on Politics Balla
 
Offensive on Gaza big gamble for Israelis: Hamas
Gaza, Aug 1 (IANS) The Islamic Hamas movement said Thursday that the continuation of the Israeli offensive on the Gaza Strip is a big gamble for the Israelis. Israeli Prime Minister Benjamin Netanyahu's decision to...
Read more on Politics Balla
 
Assad vows persistent fight against 'terrorism' in Syria
Damascus, Aug 1 (IANS) Syrian President Bashar al-Assad said Thursday that his administration's war against terrorism is a "battle of existence", state media reported. Assad made the remarks in a speech marking the...
Read more on Politics Balla
 
Hamas accepts UN-proposed ceasefire in Gaza
Gaza, Aug 1 (IANS) Islamic Hamas movement and other Palestinian factions accepted early Friday a UN-proposed ceasefire for 72 hours with Israel, a senior Hamas official said. Izzat al-Resheq, member in Qatar based-...
Read more on Politics Balla
 
I was fortunate with all leading ladies, except one: Douglas
Los Angeles, Aug 1 (IANS) Actor Michael Douglas says he always enjoyed a great rapport with all his female co-stars, except one. Although he didn't reveal the name of that one actress, the the 69-year showered praise...
Read more on Celebrity Balla
 
Israel confirms 72-hour ceasefire in Gaza
Jerusalem, Aug 1 (IANS) Israel confirmed Friday it has accepted a proposal for a 72-hour ceasefire with Hamas, which starts at 0500 GMT. "Israel has accepted the U.S./UN proposal for a 72-hour humanitarian ceasefire...
Read more on Politics Balla
 
Kelsey Grammer wants more kids
Los Angeles, Aug 1 (IANS) Actor Kelsey Grammer, who recently became father for the sixth time and is also a grandfather, is keen to expand his family even at the age of 69. His young wife Kayte gave birth to the...
Read more on Celebrity Balla
 
Eddie Cibrian has no 'ulterior motives'
Eddie Cibrian believes his new reality TV show will prove he is devoted to LeAnn Rimes. The 41-year-old actor, who tied the knot with the country singer in 2011 after their affair led to the breakdown of their first...
Read more on Celebrity Balla
 
Chad Kroeger buys 17-carat ring for Avril Lavigne
Chad Kroeger bought Avril Lavigne a lavish 17-carat diamond ring for their first wedding anniversary. The 'Here's to Never Growing Up' hitmaker, who married the Nickelback frontman, 39, at Château de La Napoule in the...
Read more on Celebrity Balla