Credit Karma must establish security programs to address risks during the development of applications and must undergo independent security assessments every other year for the next 20 years under a settlement of Federal Trade Commission charges approved Tuesday. 

The settlement bans Credit Karma from misrepresenting the level of privacy or security of its products and services. The company was accused of failing to secure the transmission of millions of consumers' sensitive personal information. Credit Karma is a personal finance Web site with more than 20 million members.

Subscribe Now

Access to authoritative analysis and perspective and our data-driven report series.

14-Day Free Trial

No credit card required. Complete access to articles, breaking news and industry data.