On January 3, 2023, an Illinois state court entered a preliminary approval order for a settlement of nearly $300,000 in a class action lawsuit against Whole Foods for claims that the company violated the Illinois Biometric Information Privacy Act.
Continue Reading Whole Foods Settles BIPA Voiceprint Class Action
Personal Information
First CCPA Enforcement Action Settlement Announced by California AG
On August 24, 2022, California Attorney General Rob Bonta announced the Office of the Attorney General’s (“OAG’s”) first settlement of a California Consumer Privacy Act (“CCPA”) enforcement action, against Sephora, Inc.
Continue Reading First CCPA Enforcement Action Settlement Announced by California AG
California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses
Recently, the Governor of California signed the California Consumer Privacy Act of 2018. The Act introduces key privacy requirements for businesses, and was passed quickly by California lawmakers in an effort to remove a ballot initiative of the same name from the November 6, 2018, statewide ballot.
Continue Reading California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses
FTC Revises Its Security Settlement with Uber
The Federal Trade Commission has modified its 2017 settlement with Uber Technologies Inc. after learning of an additional breach that was not taken into consideration during its earlier negotiations with the company.
Continue Reading FTC Revises Its Security Settlement with Uber
FTC Settles First Children’s Privacy Case Involving Connected Toys
On January 8, 2018, the FTC announced an agreement with an electronic toy manufacturer, settling charges that VTech violated COPPA by collecting personal information from hundreds of thousands of children without providing direct notice or obtaining their parent’s consent, and failing to take reasonable steps to secure the data it collected.
Continue Reading FTC Settles First Children’s Privacy Case Involving Connected Toys
FTC Issues Policy Statement on COPPA and Voice Recordings
On October 23, 2017, the Federal Trade Commission issued a policy enforcement statement providing additional guidance on the applicability of the Children’s Online Privacy Protection Rule to the collection of children’s audio voice recordings. …
Continue Reading FTC Issues Policy Statement on COPPA and Voice Recordings
FTC Announces Settlement with Lenovo Regarding Preinstalled Laptop Software
On September 5, 2017, the FTC announced that Lenovo, Inc. agreed to settle charges that its preloaded software on some laptop computers compromised online security protections in order to deliver advertisements to consumers. …
Continue Reading FTC Announces Settlement with Lenovo Regarding Preinstalled Laptop Software
Uber Settles FTC Data Privacy and Security Allegations
On August 15, 2017, the FTC announced that it had reached a settlement with Uber, Inc., over allegations that the ride-sharing company had made deceptive data privacy and security representations to its consumers. Under the terms of the settlement, Uber has agreed to implement a comprehensive privacy program and undergo regular, independent privacy audits for the next 20 years.
Continue Reading Uber Settles FTC Data Privacy and Security Allegations
Privacy and Data Security Risks in M&A Transactions: Video Series
In a video roundtable series, Hunton & Williams LLP partners Lisa J. Sotto and Steven M. Haas and special counsel Allen C. Goolsby, along with Stroz Friedberg’s co-president Eric M. Friedberg and Lee Pacchia of Mimesis Law, discuss the special consideration that should be given to privacy and cybersecurity risks in corporate transactions. This blog post contains links to the first two segments of the videos. …
Continue Reading Privacy and Data Security Risks in M&A Transactions: Video Series
New Jersey Shopper Privacy Bill Signed into Law
On July 21, 2017, New Jersey Governor Chris Christie signed a bill that places new restrictions on the collection and use of personal information by retail establishments for certain purposes. The statute, which is called the Personal Information and Privacy Protection Act, permits retail establishments in New Jersey to scan a person’s driver’s license or other state-issued identification card only for eight purposes. …
Continue Reading New Jersey Shopper Privacy Bill Signed into Law