Penalty Amount
$16,000,000
Consumers Affected
15,000,000
New Jersey Attorney General Matthew J. Platkin announced a multistate settlement with Experian and T-Mobile over a 2015 data breach that compromised personal information of over 15 million consumers. The companies will pay over $16 million to states and agree to improve data security and vendor management practices. New Jersey will receive approximately $500,000 from the settlement.
Experian must implement a comprehensive information security program with zero-trust principles, regular executive-level reporting, enhanced employee training, data minimization and disposal requirements, and specific security measures including encryption, segmentation, patch management, and access controls. T-Mobile must strengthen vendor management practices. Both companies must offer five years of free credit monitoring services to affected consumers.
Entity
Experian and T-Mobile
Industry
Financial ServicesOfficial Press Release
https://www.njoag.gov/nj-to-receive-roughly-500k-from-16m-settlements-over-2012-and-2015-experian-data-breaches/
2022 1107 Experian CV Assurance (Executed Experian and DPC)
https://www.nj.gov/oag/newsreleases22/2022-1107_Experian-CV-Assurance-(Executed-Experian-and-DPC)-Filed-11.7.22.pdf
2022 1107 New Jersey Experian TM Assurance (Experian and DPC
https://www.nj.gov/oag/newsreleases22/2022-1107_New-Jersey_Experian-TM-Assurance-(Experian-and-DPC-Executed)-Filed-11.7.22.pdf
2022 1107 TMobile Assurance ExperianTM (TMobile and DPC Exec
https://www.nj.gov/oag/newsreleases22/2022-1107_TMobile-Assurance-ExperianTM-(TMobile-and-DPC-Executed)-Filed-11.7.22.pdf
New Jersey Attorney General Enforcement Page
https://www.njoag.gov/about/divisions-and-offices/division-of-consumer-affairs/
A former employee of the New Jersey Department of Children and Families was indicted for allegedly leaking confidential child protection case information in exchange for bribes. The defendant, Susaida Nazario, misused her access to provide case details to an unauthorized individual, compromising sensitive children's data.
New Jersey Attorney General Matthew Platkin announced that New Jersey is joining a coalition of 22 states in suing Uber for deceptive practices related to its Uber One subscription service. The lawsuit alleges that Uber enrolled consumers without their knowledge and made cancellation extremely difficult, seeking restitution, penalties, and an injunction under New Jersey's Consumer Fraud Act and the Restore Online Shoppers' Confidence Act.
New Jersey Attorney General Matthew Platkin is leading a bipartisan coalition of 42 attorneys general in sending a letter to 13 tech companies, demanding that they implement safeguards for their AI chatbots to prevent harmful interactions such as sexually explicit conversations with children, encouraging self-harm, and spurring violence, following reports of serious incidents including deaths and self-harm.
The New Jersey Division of Consumer Affairs sent warning letters to over 3,000 auto dealerships reminding them of the state's data deletion law, which requires dealerships to offer to delete personal data from vehicles when accepting them for resale or lease. Failure to comply can result in fines of $500 for first offenses and $1,000 for subsequent offenses, aimed at preventing unauthorized access to sensitive consumer information stored in vehicle infotainment systems.
New Jersey Attorney General Matthew J. Platkin joined a coalition of 20 attorneys general in filing a lawsuit against the U.S. Department of Agriculture (USDA) for demanding that states turn over sensitive personal information of SNAP recipients, including Social Security numbers and addresses. The lawsuit argues that this demand violates federal privacy laws and the Constitution, as the data is protected and should only be used for program administration. The coalition seeks to block USDA from conditioning SNAP funding on compliance with this demand.
The New Jersey Attorney General filed a lawsuit against Discord, Inc. for deceptive business practices under the Consumer Fraud Act. Discord misrepresented its Safe Direct Messaging and age verification features, failing to protect children from