In case you missed it, below are recent posts from Consumer Privacy World covering the latest developments on data privacy, security and innovation. Please reach out to the authors if you are interested in additional information.
CPW’s Kristin Bryan discusses the FTC’s proposed Ransomware Act with GDR
Global Data Review caught up with CPW’s Kristin Bryan regarding a proposed bill that takes a broad interpretation of what the FTC will need to report on regarding cyberattacks. Kristin shares her insight on what impact The Ransomware Act will have on potential stronger FTC enforcement and how companies need to be prepared:
“Such a
New York Department of Financial Services Slaps Robinhood Crypto with $30 Million Fine for Cyber Compliance Failures
On August 1, the New York State Department of Financial Services (“NYDFS” or “DFS”) announced a Consent Order and $30 million fine against Robinhood Crypto, LLC (“RHC”), the wholly-owned cryptocurrency trading unit of the popular investing app by Robinhood Financial LLC. In the Order, NYDFS alleges RHC failed to comply with NYDFS rules pertaining to
Federal Bill Would Broaden FTC’s Role in Cybersecurity and Data Breach Disclosures
Last week, the House Energy and Commerce Committee advanced H.R. 4551, the “Reporting Attacks from Nations Selected for Oversight and Monitoring Web Attacks and Ransomware from Enemies Act” (“RANSOMWARE Act”). H.R. 4551 was introduced by Consumer Protection and Commerce Ranking Member Gus Bilirakis (R-FL).
If it becomes law, H.R. 4551 would amend Section 14 of
CPW Week in Review
In case you missed it, below are recent posts from Consumer Privacy World covering the latest developments on data privacy, security and innovation. Please reach out to the authors if you are interested in additional information.
Our Data Privacy Practice Continues to Expand: Julia B. Jacobson and Shea Leitch Join the Team
T-Mobile Agrees in MDL to Record Setting $350 Million Data Breach Settlement to Resolve CCPA and Other Privacy Claims
In a record-setting proposed settlement filed last week, T-Mobile has agreed to pay $350 million and boost its data security by $150 million over the next two years to resolve multidistrict litigation brought by T-Mobile customers whose data was allegedly exposed in a 2021 data breach. Read on for the terms of the settlement, which may serve as a model in other high stakes data security cases going forward.
Recall that in August 2021, T-Mobile disclosed that it had been the victim of a cyberattack that resulted in the compromise of some current, former and prospective customers’ SSN, name, address, date of birth and driver’s license/ID information the “Data Event”). By T-Mobile’s account, no “customer financial information, credit card information, debit or other payment information” was exposed in the attack. Nevertheless, over 40 putative class action claims were filed seeking damages for the improper disclosure of Plaintiffs’ personal information. In December 2021, the Judicial Panel on Multidistrict Litigation transferred and centralized the putative class actions into the MDL standing before the Western District of Missouri.Continue Reading T-Mobile Agrees in MDL to Record Setting $350 Million Data Breach Settlement to Resolve CCPA and Other Privacy Claims
Carnival Cruise Line and 46 State Attorneys General Reach $6 Million Dollar Settlement Over 2019 Data Breach
Special thanks to our Summer Associate, Nyet Abraha, for her work on this blog.
Carnival Cruise Line, one of the largest international cruise lines, has agreed to pay $6 million to resolve claims brought by state attorneys general in response to a 2019 data breach. In March 2020, Carnival reported a data breach that compromised
CPW Week in Review
In case you missed it, below are recent posts from Consumer Privacy World covering the latest developments on data privacy, security and innovation. Please reach out to the authors if you are interested in additional information.
Online Safety in Digital Markets Needs a Joined Up Approach with Competition Law in the UK
CPW Week in Review
In case you missed it, below are recent posts from Consumer Privacy World covering the latest developments on data privacy, security and innovation. Please reach out to the authors if you are interested in additional information.
Federal Court Dismisses Colonial Pipeline Cybersecurity Litigation
Federal Court Refuses to Dismiss Biometric Claims Brought by Trucker Against Facial
Federal Court Dismisses Colonial Pipeline Cybersecurity Litigation
Thanks are owed to Summer Law Clerk Mia Guy for her contributions to this article.
Recently a federal court dismissed a cybersecurity litigation brought in the wake of the May 2021 Colonial Pipeline Ransomware attack. Ramon Dickerson et al. v. Colonial Pipeline Co. et al., No. 1:21-CV-02098 (N.D. Ga. Jun. 17, 2022). Based on