Photo of Kim Phan

Kim Phan

Subscribe to Kim Phan's Posts

Kim is a privacy and data security lawyer who counsels companies in federal and state privacy and data security statutes and regulations. Her work encompasses strategic planning and guidance for companies to incorporate privacy and data security considerations throughout product development, marketing, and implementation.

Follow:Read more about Kim PhanKim's Linkedin Profile

The Consumer Financial Protection Bureau (CFPB) today outlined a plan for rulemaking under the Fair Credit Reporting Act (FCRA) that could significantly impact the entire consumer data ecosystem. The proposed rulemaking could redefine “data brokers” and “data aggregators” and extend FCRA regulation to businesses that do not currently meet the FCRA’s definition of “consumer reporting agency.” The CFPB’s plan could also impose stricter rules for obtaining consumer consent and increase compliance requirements and risks for both new and existing members of the FCRA-regulated consumer data ecosystem.

Join us for the third episode in a special three-part series covering the CFPB’s intention to propose new rules under the Fair Credit Reporting Act (FCRA). In this episode, Troutman Pepper Partners Chris Willis, Dave Gettings, Kim Phan, Ethan Ostroff, and Ron Raether discuss the potential implications of regulating data brokers under the FCRA, and how this might affect data brokers as well as other types of entities, including users, consumer reporting agencies, and resellers.

Join us for the third episode in a special three-part series covering the CFPB’s intention to propose new rules under the Fair Credit Reporting Act (FCRA). In this episode, Troutman Pepper Partners Chris Willis, Dave Gettings, Kim Phan, Ethan Ostroff, and Ron Raether discuss the potential implications of regulating data brokers under the FCRA, and how this might affect data brokers as well as other types of entities, including users, consumer reporting agencies, and resellers.

When using artificial intelligence (AI) or complex credit models, can lenders rely on the checklist of reasons provided in Regulation B sample forms for adverse action notices? According to today’s guidance issued by the Consumer Financial Protection Bureau (CFPB or Bureau), the answer to that question is, in many circumstances, no.

Join us for the second episode in a special three-part series covering the CFPB’s intention to propose new rules under the Fair Credit Reporting Act (FCRA). In this episode, Troutman Pepper Partners Chris Willis, Dave Gettings, Kim Phan, Ron Raether, and Ethan Ostroff discuss the regulation of credit header data and the potential impact on

Join us for the second episode in a special three-part series covering the CFPB’s intention to propose new rules under the Fair Credit Reporting Act (FCRA). In this episode, Troutman Pepper Partners Chris Willis, Dave Gettings, Kim Phan, Ron Raether, and Ethan Ostroff discuss the regulation of credit header data and the potential impact on the FCRA and consumer reporting agencies, as well as users and data brokers.

Join us for the first episode in a special three-part series covering the CFPB’s intention to propose new rules under the Fair Credit Reporting Act (FCRA). In this episode, Troutman Pepper Partners Chris Willis, Dave Gettings, Ethan Ostroff, and Kim Phan explore the historical events that led us to this point, the next steps in the rulemaking process, the expected timeline for a final rule, how the CFPB is coordinating with the FTC and other regulators, and the expected proposed rulemaking regarding credit header data and data brokers.

Join us for the first episode in a special three-part series covering the CFPB’s intention to propose new rules under the Fair Credit Reporting Act (FCRA). In this episode, Troutman Pepper Partners Chris Willis, Dave Gettings, Ethan Ostroff, and Kim Phan explore the historical events that led us to this point, the next steps in the rulemaking process, the expected timeline for a final rule, how the CFPB is coordinating with the FTC and other regulators, and the expected proposed rulemaking regarding credit header data and data brokers.

In this episode of The Crypto Exchange, Troutman Pepper Partner Ethan Ostroff welcomes his colleagues Kim Phan and Addison Morgan to discuss the recent enforcement actions brought by the Federal Trade Commission (FTC) against Celsius Network and its co-founders. In addition to permanently banning Celsius Network from consumers’ assets, the FTC also fined the company a near record-breaking $4.7 billion.

At a White House Roundtable on protecting Americans from allegedly harmful “data broker” practices, Consumer Financial Protection Bureau (CFPB or Bureau) Director Rohit Chopra announced the Bureau’s intention to expand the reach of the Fair Credit Reporting Act (FCRA) to data brokers. He stated, “Next month, the CFPB will publish an outline of proposals and alternatives under consideration for a proposed rule. We’ll soon hear from small businesses, which will help us craft the rule.”