The Wyndham decision makes clear that there is a “‘top cop’ regulatory agency looking over privacy and security practices of private business: the Federal Trade Commission,” Cynthia Larose, a member of Mintz Levin, told the Cybersecurity Law Report. On August 24, 2015, the Third Circuit denied Wyndham’s motion to dismiss an FTC complaint against it and held that the FTC can pursue Wyndham for allegedly weak data security practices that led to three breaches. “The FTC is here to stay in the data privacy and security space,” Michael Gottlieb, a partner at Boies, Schiller & Flexner, said. We examine the decision and its implications. See also “The FTC Asserts Its Jurisdiction and Provides Ten Steps to Enhance Cybersecurity” (Jul. 15, 2015).