Privacy Enforcement Tracker

1,285 enforcement actions from 14 federal and state jurisdictions. Every event traced back to its official government source.

1,285

Total Actions

Jurisdictions

$35.3B+

Total Fines Tracked

Access this data programmatically:MCP Server API Docs

CAFebruary 11, 2026Settlement

The Walt Disney Company(Disney)

The California Attorney General settled with The Walt Disney Company for $2.75 million over CCPA violations. Disney's opt-out processes failed to stop the sale or sharing of consumer data across all devices and services associated with accounts, requiring consumers to navigate cumbersome methods. Disney must pay the penalty and implement comprehensive opt-out mechanisms.

HighOpt-Out Failure

$2.8M

CANovember 21, 2025Settlement

Jam City, Inc.(Jam City)

California Attorney General Rob Bonta announced a $1.4 million settlement with Jam City, Inc. for violating the CCPA. The mobile gaming company failed to provide opt-out methods for the sale or sharing of personal information across its 21 apps and sold or shared data of children aged 13-16 without required affirmative consent. Jam City must now implement in-app opt-out mechanisms and obtain affirmative consent for minors' data.

HighOpt-Out FailureChildren's Data

$1.4M

CAJuly 1, 2025Settlement

Healthline Media LLC(Healthline)

California Attorney General Rob Bonta announced a $1.55 million settlement with Healthline Media LLC for CCPA violations. Healthline failed to honor opt-out requests, shared consumer data including health-related article titles with third parties, and used deceptive privacy practices. The settlement includes injunctive relief and a compliance program.

HighOpt-Out FailureUnauthorized Data SharingHealth Data

$1.6M

CAAugust 24, 2022Settlement

Sephora, Inc.(Sephora)

California Attorney General Rob Bonta announced a settlement with Sephora, Inc. for $1.2 million over violations of the California Consumer Privacy Act. Sephora failed to disclose that it sold consumer personal information and did not process opt-out requests via Global Privacy Control. The settlement requires Sephora to pay penalties and implement compliance measures including policy changes and reporting.

HighOpt-Out FailureNotice Failure

$1.2M

CASeptember 5, 2017SettlementMultistate

Lenovo

Lenovo preinstalled 'Visual Discovery' software on its computers that intercepted browsing data and broke encrypted connections without user consent, compromising security and privacy. The multi-state settlement imposes a $3.5 million penalty and requires Lenovo to implement disclosure, consent, opt-out, and security compliance measures.

HighNotice FailureConsent FailureOpt-Out Failure

$3.5M