Court Rules

Privacy Enforcement Tracker

1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.

1,285

Total Actions

14

Jurisdictions

$35.3B+

Total Fines Tracked

Access this data programmatically:MCP Server API Docs
JurisdictionAllHHSFTCCTCANJTXNYCPPAORFL
ViolationAllData BreachHealth DataSecurity FailureUnauthorized Data SharingNotice FailureConsent FailureChildren's DataOpt-Out FailureData Broker Non-ComplianceDark PatternsGeolocation DataStudent Data
IndustryAllTechnologyGamingEducation TechnologyHealthcareFinancial ServicesSocial MediaAdvertising TechnologyData BrokerTelecommunicationsMedia & Entertainment
RiskAllCriticalHighMediumLow
Showing 5 resultsClear all filters
NJSettlementMultistate

Blackbaud

Blackbaud, a software company, experienced a ransomware attack in 2020 that exposed sensitive personal information, including protected health data, due to inadequate security practices and delayed breach notification. A multistate investigation resulted in a $49.5 million settlement, requiring Blackbaud to enhance data security, implement breach response plans, and undergo third-party assessments.

CriticalData BreachSecurity FailureBreach Notification Delay

$49.5M

NJSettlementMultistate

Uber Technologies, Inc.(Uber)

Uber Technologies, Inc. agreed to pay $148 million to settle a multi-state investigation into a data breach that compromised personal information of riders and drivers. The breach occurred in November 2016 but was not disclosed until November 2017. Uber must adopt new policies to safeguard consumer data.

CriticalData BreachSecurity FailureBreach Notification Delay

$148.0M

NJConsent Decree

Lightyear Dealer Technologies(DealerBuilt)

Lightyear Dealer Technologies (DealerBuilt) settled an investigation into a 2016 data breach where a misconfigured file system exposed personal data, including social security numbers and bank information, of thousands of auto dealership customers nationwide. The settlement includes an $80,784 payment (with $20,000 suspended) and mandatory cybersecurity reforms.

LowData BreachSecurity Failure

$49K

NJSettlementMultistate

Lenovo Inc.(Lenovo)

New Jersey joined 31 other states and the FTC in a $3.5 million settlement with Lenovo for pre-installing VisualDiscovery ad software on laptops that created a 'man-in-the-middle' security vulnerability, intercepting users' encrypted data without adequate disclosure or opt-out mechanisms. The settlement requires Lenovo to improve transparency, obtain affirmative consent, provide effective opt-out tools, and implement a long-term security compliance program with independent audits.

HighSecurity FailureUnauthorized Data SharingNotice Failure

$3.5M

NJSettlement

Equiliv Investments and Ryan Ramminger(Equiliv Investments)

The New Jersey Attorney General and FTC settled with app developer Equiliv Investments and Ryan Ramminger for distributing the Prized app that contained malware to mine cryptocurrency without user consent. The settlement prohibits such activities, requires record-keeping for 20 years, and imposes a $5,200 penalty with an additional $44,800 suspended.

LowSecurity FailureConsent Failure

$5K

Explore Enforcement Data

By Jurisdiction

HHS Office for Civil Rights554 Federal Trade Commission109 Connecticut Attorney General101 California Attorney General55 New Jersey Attorney General50 Texas Attorney General39 New York Attorney General34 California Privacy Protection Agency19 Oregon Attorney General16 Florida Attorney General12 Massachusetts Attorney General6 Illinois Attorney General3 WA1 Virginia Attorney General1

By Violation Type

Data Breach619 Health Data615 Security Failure583 Unauthorized Data Sharing173 Notice Failure102 Consent Failure89 Children's Data69 Opt-Out Failure42 Data Broker Non-Compliance24 Dark Patterns20 Geolocation Data18 Student Data18

By Industry

TechnologyGamingEducation TechnologyHealthcareFinancial ServicesSocial MediaAdvertising TechnologyData BrokerTelecommunicationsMedia & EntertainmentGovernmentRetailInsuranceOther