Texas Attorney General Ken Paxton (R) announced a nearly $1.4 billion settlement with Google in a case about the company's unlawful tracking and collecting of user's personal information, including geolocation and biometric data. Paxton filed the lawsuit against Google in October 2022, alleging violations of the Texas Capture or Use of Biometric Identifier Act (see 2210200075).
Days after an enforcement action against menswear retailer Todd Snyder, the California Privacy Protection Agency said its board ordered National Public Data to pay a $46,000 fine, the maximum allowed. The now-closed data broker failed to register as a data broker and pay an annual fee, as the California Delete Act requires, the CPPA said Thursday.
While the Biden administration’s FTC focused on platform accountability for child safety, the Trump FTC appears far more concerned with strengthening parental control to protect kids' privacy and shield them from online harm, former FTC officials said Thursday at the Privacy + Security Forum Spring Academy.
No matter how aggressively the FTC under the Trump administration pursues privacy cases, state attorneys general are clearly ready to band together and enforce state laws, Safeguard Privacy General Counsel Andy Hepburn said Wednesday at the Privacy + Security Forum.
There’s a checklist companies can complete to show they’re operating in “good faith” to comply with DOJ’s Data Security Program before full enforcement begins July 8 (see 2504140047), Orrick attorneys said Wednesday at the Privacy + Security Forum Spring Academy event.
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching on the title or by clicking on the hyperlinked reference number.
The California Privacy Protection Agency (CPPA) dressed down national menswear retailer Todd Snyder with a $345,178 fine Tuesday for alleged violations of the California Consumer Privacy Act (CCPA). Closely following CPPA action last March against Honda, the Todd Snyder case is more than an enforcement action. It also “highlights a trend by this agency of looking beyond surface compliance with the CCPA,” Wiley privacy attorney Joan Stewart told us. The agency’s board adopted the enforcement decision May 1.
A disconnect exists between legislatures, the privacy laws they create and the litigation that results from them, said panelists during a Federal Communications Bar Association (FCBA) event on privacy litigation trends Thursday. Instead, this ecosystem results in great confusion, prompting a rise in privacy law-related cases, they said.
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a $600,000 settlement with California health care network PIH Health, Inc. (PIH) Wednesday over a phishing attack that allegedly exposed electronic protected health information (ePHI) of almost 200,000 individuals.
European Data Protection Supervisor Wojciech Wiewiorowski is worried about what's going on in the U.S. and its potential effect on the EU-U.S. Data Privacy Framework (DPF), he said Wednesday at a streamed Brussels briefing on the EDPS' 2024 annual report.