Court Rules

Privacy Enforcement Tracker

1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.

1,285

Total Actions

14

Jurisdictions

$35.3B+

Total Fines Tracked

Access this data programmatically:MCP Server API Docs
JurisdictionAllHHSFTCCTCANJTXNYCPPAORFL
ViolationAllData BreachHealth DataSecurity FailureUnauthorized Data SharingNotice FailureConsent FailureChildren's DataOpt-Out FailureData Broker Non-ComplianceDark PatternsGeolocation DataStudent Data
IndustryAllTechnologyGamingEducation TechnologyHealthcareFinancial ServicesSocial MediaAdvertising TechnologyData BrokerTelecommunicationsMedia & Entertainment
RiskAllCriticalHighMediumLow
Showing 3 resultsClear all filters
CASettlementMultistate

Equifax

California Attorney General led a multistate settlement with Equifax for a 2017 data breach that exposed personal information of 147 million consumers due to security failures and delayed disclosure. Equifax must pay $175 million in state penalties, $425 million for consumer restitution, and implement data security enhancements including a comprehensive Information Security Program and credit monitoring for up to ten years.

CriticalData BreachSecurity FailureBreach Notification Delay

$175.0M

CASettlementMultistate

Uber Technologies, Inc.(Uber)

Uber Technologies, Inc. settled for $148 million over a 2016 data breach that exposed 57 million users' personal information. The company was accused of covering up the breach by paying hackers and failing to notify authorities or affected drivers as required by law. The settlement includes a large penalty and mandates robust data security practices, privacy-by-design integration, and regular reporting to prevent future incidents.

CriticalData BreachNotice FailureSecurity Failure

$148.0M

CASettlementMultistate

Target

Target settled a multi-state enforcement action for a 2013 data breach that exposed payment card information of over 40 million customers due to inadequate security. The $18.5 million settlement requires Target to implement advanced security measures, and California receives over $1.4 million.

CriticalData BreachSecurity Failure

$18.5M

Explore Enforcement Data

By Jurisdiction

HHS Office for Civil Rights554 Federal Trade Commission109 Connecticut Attorney General101 California Attorney General55 New Jersey Attorney General50 Texas Attorney General39 New York Attorney General34 California Privacy Protection Agency19 Oregon Attorney General16 Florida Attorney General12 Massachusetts Attorney General6 Illinois Attorney General3 WA1 Virginia Attorney General1

By Violation Type

Data Breach619 Health Data615 Security Failure583 Unauthorized Data Sharing173 Notice Failure102 Consent Failure89 Children's Data69 Opt-Out Failure42 Data Broker Non-Compliance24 Dark Patterns20 Geolocation Data18 Student Data18

By Industry

TechnologyGamingEducation TechnologyHealthcareFinancial ServicesSocial MediaAdvertising TechnologyData BrokerTelecommunicationsMedia & EntertainmentGovernmentRetailInsuranceOther