Tesla was hit with a class-action suit Thursday alleging California Invasion of Privacy Act (CIPA) violations through the car company's use of tracking pixels on its website without the knowledge or consent of visitors. Plaintiff Peter Dawidzik alleged that the company uses the trackers to collect detailed user information like IP addresses, pages visited, mouse movements and even geolocation based on IP, and then shares the data with third parties such as Twitter and Google.
A women-only app intended to enhance safety for online dating users has disabled its direct messaging (DM) feature after learning that some messages were accessed during a data breach that occurred July 25 (see 2507280017). Earlier this month, the Tea app suffered a breach that leaked 72,000 images, including 13,000 selfies with identifying information.
A women-only app intended to enhance safety for online dating users suffered a breach this month that leaked 72,000 images, including 13,000 selfies with identifying information, a law firm investigating the breach said Friday. Edelson Lechtzin is investigating the breach of the Tea app for a potential class-action on behalf of victims.
Businesses should start thinking now about complying with new data-protection regulations approved Thursday by the California Privacy Protection Agency (CPPA), privacy attorneys said immediately afterward in blogs and LinkedIn posts. While consumer privacy advocates slammed the rules as weak, one acknowledged they still give California a lead over other U.S. states.
A federal judge's recent decision in a privacy case involving GoodRx is relevant to one concerning children's privacy violations by an EdTech company, parents alleged in a court document filed Thursday.
House of Dior didn't properly secure customers' sensitive personal information, prompting a data breach in Jan. 2025, a class-action lawsuit filed Wednesday alleges. The suit also claims Dior was too slow to inform customers that their personal data was potentially exposed.
Recent settlements show the vulnerability of companies that hire privacy vendors and think they're in compliance, Frankfurt Kurnit attorneys said during a webinar Thursday. In addition, they noted that states besides California are becoming more active in privacy litigation and enforcement.
A class-action complaint alleging a software company created and sold consumer profiles without their consent will continue, the U.S. District Court for Northern California ruled on Friday.
Ireland's first mass-litigation case could have major implications for tech companies that process data under the General Data Protection Regulation, Pinsent Masons commercial litigation attorney Zara West blogged Thursday.
Google renewed its call for a federal court to dismiss a class-action case against it that alleges the company's education products secretly harvest mass amounts of student information and data without their or their parents’ knowledge or consent. In its motion to dismiss, Google claims the plaintiffs -- parents of minor schoolchildren -- haven't alleged invasion of privacy.