DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Documents obtained by House Oversight may throw a monkey wrench into government's case against LabMD

Posted on February 16, 2015 by Dissent

On February 12, FTC Administrative Law Judge D. Michael Chappell admitted two letters from the House Oversight Committee (OGR) as exhibits in FTC v. LabMD. The letters concern OGR’s investigation of Tiversa, a firm whose statements the FTC relied upon in its data security enforcement case against LabMD (see FTC case files and previous coverage on PHIprivacy.net). Admission of the exhibits was opposed by counsel for the FTC, but in his order, Judge Chappell explains:

It should be noted that there is no dispute as to the authenticity of the OGR letters and the receipt of the letters by the FTC. Nor is there any valid dispute that the Committee “is investigating the activities of Tiversa, Inc., a company upon which the Federal Trade Commission [is] rel[ying] as a source of information in its enforcement action against LabMD, Inc.” (June 11, 2014 letter at 1); that the Committee is concerned about the truthfulness of the information provided to the FTC; or that Tiversa apparently did not fully provide requested documents subpoenaed in this matter, demonstrated by certain Tiversa documents produced by Tiversa to the OGR and attached to the December 1, 2014 letter (RX 544-RX 548). There is no reason to question the veracity of the OGR letters’ statements in this regard. Accordingly, official notice or judicial notice will be taken of these facts, and only these facts, pursuant to FTC Rule 3.43(f). In addition, the statements purportedly made by Mr. Boback to the Committee, as excerpted in the OGR letters, will not be considered for the truth of the matters asserted therein, and therefore are not, by definition, hearsay.

The first letter admitted (“RX 542”) is the  June 2014 letter from Rep. Darrel Issa to the Chairwoman of the FTC, Edith Ramirez. As previously reported by PHIprivacy.net and as summarized by Judge Chappell in his order, the letter expresses concern that testimony from Tiversa’s chief executive officer, Mr. Robert Boback, was inconsistent and possibly untruthful.

The second letter admitted, (“RX 543,”) is a previously undisclosed December 2014 letter from OGR to Chairwoman Ramirez that describes – and appends – internal Tiversa documents provided to OGR by Tiversa during OGR’s investigation. OGR’s letter provides excerpts from testimony to OGR and points out the contradictions between what Tiversa provided to the FTC and what Tiversa said to, and provided to, OGR.

Although the December letter has been admitted in FTC v. LabMD, the Tiversa documents appended to that letter have yet to be admitted, with Judge Chappell denying LabMD’s motion to admit those exhibits, based on lack of evidentiary foundation. The denial was without prejudice, leaving the door open for LabMD to resubmit.

OGR’s letters to the FTC and the appended files are public records, despite Tiversa stamping them “Confidential – For Committee and Staff Use Only.” After determining that there has been no motion to treat them in camera in the administrative hearing, PHIprivacy.net decided to make the  December 14th letter with all appended Tiversa internal documents available here, so that readers may form their own impressions as to whether they raise significant doubt about the accuracy and completeness of Tiversa’s testimony in the administrative case and whether the FTC should have relied on Tiversa’s reports as to the discovery of, and distribution of, a LabMD file.

Given that FTC received these letters in June and December of 2014, one wonders what steps the FTC has taken to ensure that Tiversa has now provided all documents responsive to the FTC’s 2013 subpoena and to verify the accuracy of the reports upon which it formed its case against LabMD.

In other developments in FTC vs. LabMD, former Tiversa employee Richard (“Rick”) Wallace, who is scheduled to testify under immunity on March 3 when the hearing resumes, has changed counsel and is now represented by Bryan Cave LLP.

 

Category: Uncategorized

Post navigation

← PA: Hundreds of court documents found scattered in Philadelphia
Beyond Stuxnet and Flame: Equation ‘most advanced’ cybercriminal gang recorded (updated) →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • CoinMarketCap Hacked, Scrambles to Remove Malicious Wallet Verification Popup
  • Montana Attorney General launches investigation into Lee Enterprises data breach
  • AT&T gets preliminary approval for $177 million data breach settlement
  • Aflac notifies SEC of breach suspected to be work of Scattered Spider
  • Former JBLM soldier pleads guilty to attempting to share military secrets with China
  • No, the 16 billion credentials leak is not a new data breach — a wake-up call about fake news (Updated)
  • Tonga’s health system hit by cyberattack (1)
  • Russia Expert Falls Prey to Elite Hackers Disguised as US Officials
  • Proposed class action settlement in In re Netgain Technology litigation
  • Qilin Offers “Call a lawyer” Button For Affiliates Attempting To Extort Ransoms From Victims Who Won’t Pay

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Markup caught 4 more states sharing personal health data with Big Tech
  • Privacy in the Big Sky State: Montana’s Consumer Privacy Law Gets Amended
  • UK Passes Data Use and Access Regulation Bill
  • Officials defend Liberal bill that would force hospitals, banks, hotels to hand over data
  • US Judge Invalidates Biden Rule Protecting Privacy for Abortions
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.