Court Rules

Privacy Enforcement Tracker

1,338 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.

1,338

Total Actions

14

Jurisdictions

$50.6B+

Total Fines Tracked

Access this data programmatically:MCP Server API Docs
JurisdictionAllHHSFTCCTNJCATXNYORCPPAFL
ViolationAllData BreachHealth DataSecurity FailureUnauthorized Data SharingNotice FailureConsent FailureChildren's DataOpt-Out FailureDark PatternsData Broker Non-ComplianceStudent DataBiometric Data
IndustryAllTechnologyGamingEducation TechnologyHealthcareFinancial ServicesSocial MediaAdvertising TechnologyData BrokerTelecommunicationsMedia & Entertainment
RiskAllCriticalHighMediumLow
Showing 4 resultsClear all filters
CAEnforcement Action

U.S. Department of Agriculture(USDA)

California Attorney General Rob Bonta secured a second preliminary injunction from the U.S. District Court for the Northern District of California blocking the Trump Administration's demand that states turn over personal data of SNAP applicants and recipients. The court found the USDA's proposed data protocol would allow sharing of state data with entities unrelated to federal benefits administration, violating federal law.

HighUnauthorized Data Sharing
CAEnforcement ActionMultistate

Trump Administration

California Attorney General Rob Bonta, on behalf of a multistate coalition, filed a motion in U.S. District Court to enforce a preliminary injunction that blocks the Trump Administration from demanding personal and sensitive information about Supplemental Nutrition Assistance Program (SNAP) recipients. The Administration has renewed its demand, threatening to withhold administrative funding from states that do not comply, which the AG argues violates the existing court order and federal law protecting the confidentiality of SNAP applicant data.

HighUnauthorized Data Sharing
CASettlement

Healthline Media LLC(Healthline)

California Attorney General Rob Bonta announced a $1.55 million settlement with health information website publisher Healthline Media LLC, resolving allegations that the company violated the CCPA and Unfair Competition Law. Violations included failing to honor consumer opt-out requests, sharing sensitive health data with third parties without required privacy protections, and using deceptive consent banners that did not disable tracking cookies. The settlement imposes injunctive terms, compliance requirements, and a civil penalty, marking the largest CCPA settlement to date.

HighOpt-Out FailureUnauthorized Data SharingHealth Data

$1.6M

CASettlementMultistate

Lenovo

Lenovo preinstalled 'Visual Discovery' software on its computers that intercepted browsing data and broke encrypted connections without user consent, compromising security and privacy. The multi-state settlement imposes a $3.5 million penalty and requires Lenovo to implement disclosure, consent, opt-out, and security compliance measures.

HighNotice FailureConsent FailureOpt-Out Failure

$3.5M

Explore Enforcement Data

By Jurisdiction

HHS Office for Civil Rights536 Federal Trade Commission115 Connecticut Attorney General92 New Jersey Attorney General60 California Attorney General57 Texas Attorney General41 New York Attorney General39 Oregon Attorney General18 California Privacy Protection Agency12 Florida Attorney General12 Virginia Attorney General8 Massachusetts Attorney General6 Illinois Attorney General3 WA1

By Violation Type

Data Breach601 Health Data594 Security Failure561 Unauthorized Data Sharing169 Notice Failure98 Consent Failure88 Children's Data71 Opt-Out Failure36 Dark Patterns20 Data Broker Non-Compliance18 Student Data18 Biometric Data18

By Industry

TechnologyGamingEducation TechnologyHealthcareFinancial ServicesSocial MediaAdvertising TechnologyData BrokerTelecommunicationsMedia & EntertainmentGovernmentRetailInsuranceOther