New York

T-Mobile Agrees in MDL to Record Setting $350 Million Data Breach Settlement to Resolve CCPA and Other Privacy Claims

By Kristin Bryan on July 27, 2022

Posted in Article III, California, California Privacy Rights Act, Class Action, Class Certification, Colorado, Compliance, Connecticut, Consumer Protection, Cyber Insurance, Cybersecurity, Cybersecurity, Data Breach, Data Breach, Data Privacy, Data Privacy, Florida, General, Illinois, Injury in Fact, Litigation, Multidistrict Litigation, New York, Ohio, Oklahoma, Pennsylvania, Privacy Litigation, Privacy Litigation, Removal, Settlement, Standing, US, Utah, Virgina, Washington

In a record-setting proposed settlement filed last week, T-Mobile has agreed to pay $350 million and boost its data security by $150 million over the next two years to resolve multidistrict litigation brought by T-Mobile customers whose data was allegedly exposed in a 2021 data breach. Read on for the terms of the settlement, which may serve as a model in other high stakes data security cases going forward.

Recall that in August 2021, T-Mobile disclosed that it had been the victim of a cyberattack that resulted in the compromise of some current, former and prospective customers’ SSN, name, address, date of birth and driver’s license/ID information the “Data Event”). By T-Mobile’s account, no “customer financial information, credit card information, debit or other payment information” was exposed in the attack. Nevertheless, over 40 putative class action claims were filed seeking damages for the improper disclosure of Plaintiffs’ personal information. In December 2021, the Judicial Panel on Multidistrict Litigation transferred and centralized the putative class actions into the MDL standing before the Western District of Missouri.Continue Reading T-Mobile Agrees in MDL to Record Setting $350 Million Data Breach Settlement to Resolve CCPA and Other Privacy Claims

Carnival Cruise Line and 46 State Attorneys General Reach $6 Million Dollar Settlement Over 2019 Data Breach

By Kristin Bryan on July 27, 2022

Posted in California, Class Action, Colorado, Compliance, Connecticut, Cybersecurity, Data Breach, Data Privacy, Florida, Illinois, Litigation, New York, Ohio, Oklahoma, Pennsylvania, Privacy Litigation, Privacy Litigation, Settlement, US, Virgina, Washington

Special thanks to our Summer Associate, Nyet Abraha, for her work on this blog.

Carnival Cruise Line, one of the largest international cruise lines, has agreed to pay $6 million to resolve claims brought by state attorneys general in response to a 2019 data breach. In March 2020, Carnival reported a data breach that compromised…

CPW Week in Review

By Kristin Bryan on June 6, 2022

Posted in Advertising Standards Authority, Artificial Intelligence, Biometric, Biometric data, Biometric Privacy Act, BIPA, BIPA, California, California Invasion of Privacy Act, California Privacy Protection Agency, California Privacy Rights Act, California Privacy Rights Act (CPRA), CCPA, Class Action, Compliance, COPPA, CPPA, CPRA, Data Breach, Data Breach, Data Privacy, Data Privacy, Events, FCC, Federal Communications Commission, Florida, France, FTC, GDPR, GDPR, Litigation, New York, Poland, Privacy Litigation, Robocall, TCPA, UK, US, Webinar

In case you missed it, below are recent posts from Consumer Privacy World covering the latest developments on data privacy, security and innovation. Please reach out to the authors if you are interested in additional information.

OOPS! And Other Takeaways from the First Draft of CPRA Regulations

Start Vetting Your Data Processors! Key Takeaways From…

CPW Week in Review

By Kristin Bryan on May 31, 2022

Posted in Advertising Standards Authority, Biden, California Privacy Protection Agency, California Privacy Rights Act, CCPA, Colorado, Connecticut Privacy Law, COPPA, CPRA, Cybersecurity, Cybersecurity, Data Breach, Data Breach, Data Privacy, Data Privacy, EU, Events, FCC, FCRA, Federal Communications Commission, Florida, France, FTC, GDPR, General, Germany, Litigation, New York, Robocall, TCPA, UK, US, US, Utah, Washington, Webinar

The ASA’s Top Tips on Advertising “Free Trials”

FCC Announces Nine More State Robocall Investigation Partnerships

FTC Targets Children’s…

FCC Announces Nine More State Robocall Investigation Partnerships

By Paul Besozzi on May 25, 2022

Posted in FCC, Federal Communications Commission, Florida, General, New York, Robocall, TCPA, TCPA, US, US

Federal Communications Commission (“FCC”) Chairwoman Jessica Rosenworcel announced on May 17, 2022 “new robocall investigation partnerships with the Attorneys General of Iowa, Florida, Louisiana, Maine, Massachusetts, Mississippi, Nevada, New Hampshire, and South Carolina.” In addition to these new agreements, the FCC is building on its existing robocall investigation partnership with the New York Department of…

CPW Week in Review

By Kristin Bryan on January 31, 2022

Posted in Artificial Intelligence, Biometric, Compliance, Data Breach, Data Privacy, EU, FTC, General, Litigation, New York, Ohio, Supreme Court, TCPA, US

Federal Ban on Targeted Advertising: Joint Bills Introduced in the House and Senate | Consumer Privacy World

Acting New…

New York Latest State to Provide Additional Employee Privacy Protections With Electronic Monitoring Law

By Katharine Liao & Kristin Bryan on December 19, 2021

Posted in Compliance, Data Privacy, New York

Beginning on May 7, 2022, employers in New York State who engage in electronic monitoring of employee communications will be required to notify their workers of such monitoring.

S2628, signed into law on November 8, 2021, requires all employers in the state of New York to provide prior written notice to newly hired employees if…

CPW Week in Review

By Kristin Bryan on September 13, 2021

Posted in Biometric, BIPA, California Privacy Rights Act, CCPA, China, Class Action, Class Certification, Cybersecurity, Data Breach, Data Privacy, General, Multidistrict Litigation, New York, Oklahoma, Privacy Litigation

In case you missed it, below is a summary of recent posts from CPW. Please feel free to reach out if you are interested in additional information on any of the developments covered.

Sonic Data Privacy MDL Headed to Trial? Court Denies Defendant’s Motion for Summary Judgment | Consumer Privacy World

Federal Court Holds Defendant’s…

New York City Adopts Privacy Regulations Covering Restaurant Delivery Apps

By Kristin Bryan on September 9, 2021

Posted in Data Privacy, New York

As explained by CPW’s Kyle Fath, “[o]n July 29, the New York City Council passed Int. No. 2311, which amended the New York City Administrative Code to address customer data collected by delivery applications from online orders. The bill became law Aug. 29 and will come into effect after 120 days, on Dec. 27.…

CPW Week in Review

By Kristin Bryan on August 29, 2021

Posted in Article III, China, Class Action, Class Certification, Cyber Insurance, Cybersecurity, Data Breach, Data Privacy, FCRA, Federal Question, Forensic Report, General, Information Security Program, Injury in Fact, Multidistrict Litigation, New York, Privacy Litigation, Spokeo, Standing, Supreme Court

In case you missed it, below is a summary of recent posts from CPW. Please feel free to reach out if you are interested in additional information on any of the developments covered.

BREAKING: Sixth Circuit in Sonic Data Breach Litigation Denies Request to Appeal District Court’s Certification of Class, Dismissing Sonic’s Self-Identification and Standing…

Privacy World

New York

T-Mobile Agrees in MDL to Record Setting $350 Million Data Breach Settlement to Resolve CCPA and Other Privacy Claims

Carnival Cruise Line and 46 State Attorneys General Reach $6 Million Dollar Settlement Over 2019 Data Breach

FCC Announces Nine More State Robocall Investigation Partnerships

CPW Week in Review

New York Latest State to Provide Additional Employee Privacy Protections With Electronic Monitoring Law

CPW Week in Review

New York City Adopts Privacy Regulations Covering Restaurant Delivery Apps

CPW Week in Review

Address

Contacts

Search By Category