State Attorneys General

On February 18, 2022, the Texas Attorney General’s Office announced it was investigating TikTok for alleged child privacy violations and facilitation of human trafficking on its platform.
Continue Reading Texas Attorney General Investigates TikTok for Potential Child Privacy Violations and Facilitation of Human Trafficking

On February 14, 2022, Noom Inc., a popular weight loss and fitness app, agreed to pay $56 million, and provide an additional $6 million in subscription credits to settle a putative class action in New York federal court.
Continue Reading Fitness App Agrees to Pay $56 Million to Settle Class Action Alleging Dark Pattern Practices

On February 14, 2022, Texas Attorney General Ken Paxton brought suit against Meta over the company’s collection and use of biometric data. The suit alleges that Meta collected and used Texans’ facial geometry data in violation of the Texas Capture or Use of Biometric Identifier Act and the Texas Deceptive Trade Practices Act.
Continue Reading Texas AG Sues Meta Over Collection and Use of Biometric Data

On January 28, 2022, in celebration of Data Privacy Day, the Colorado Attorney General’s Office issued prepared remarks from Colorado Attorney General Phil Weiser and published guidance on data security best practices, including discussing his office’s plans for implementing the Colorado Privacy Act.
Continue Reading Colorado AG Publishes Guidance on Data Security Practices and Announces Upcoming Rulemaking Under the Colorado Privacy Act

On January 28, 2022, California Attorney General Rob Bonta published a statement regarding recent investigations conducted by his Office with respect to businesses operating loyalty programs and their compliance with the CCPA’s financial incentive requirements.
Continue Reading California AG Issues CCPA Non-Compliance Notices to Businesses Operating Loyalty Programs

The New York Office of the Attorney General recently announced the results of an investigation into “credential stuffing,” which uncovered 1.1 million compromised accounts from cyberattacks on 17 well-known companies. The announcement included a “Business Guide for Credential Stuffing Attacks,” detailing the attacks and providing tips for businesses to protect themselves.
Continue Reading New York Attorney General Announces 1.1 Million Accounts Compromised in Credential Stuffing Attacks

On August 25, 2021, New Mexico Attorney General Hector Balderas sued Rovio Entertainment, the developer of the popular Angry Birds mobile app games, alleging that the Company violated the federal Children’s Online Privacy Protection Act by knowingly collecting data from players under age 13 and sharing it with advertisers.
Continue Reading New Mexico Attorney General Files COPPA Suit Against Game Developer

The California Attorney General recently released a summary of enforcement actions the agency brought against companies in violation of the CCPA since enforcement of the Act began on July 1, 2020. The AG also launched the Consumer Privacy Interactive Tool, which allows California consumers to draft a notice of noncompliance to businesses that do not post an easy-to-find “Do Not Sell My Personal Information” link on their website.
Continue Reading California Attorney General Issues Summary of CCPA Enforcement Actions and Launches Consumer Privacy Interactive Tool