FTC Concludes Enforcement Action Against GoDaddy Regarding Data Security Infringements

The Federal Trade Commission (FTC) has concluded an order with GoDaddy regarding allegations of consumer deception stemming from insufficient data security measures that resulted in multiple security breaches. In January 2025, the FTC asserted that GoDaddy, despite its assertions of providing “award-winning security,” neglected to establish essential data security tools and practices necessary for safeguarding customer information.

As part of the findings, it was revealed that GoDaddy’s failure to deploy adequate security protocols significantly exposed customer data to vulnerabilities. This oversight has raised serious concerns regarding the effectiveness of the company’s security measures and its commitment to protecting consumer information.

The settlement seeks to ensure that GoDaddy enhances its security infrastructure and adheres to robust standards moving forward. The FTC emphasizes the importance of transparency and accountability in the protection of consumer data, holding organizations to high standards in their security practices.

This case underscores the critical need for companies within the web hosting industry, and beyond, to not only promote security measures but also to implement them effectively to protect their users from potential breaches and data loss.