Mealey's Data Privacy

  • September 19, 2024

    Failure To Allege NFL Prerecorded Videos Were Viewed Deemed ‘Fatal’ To VPPA Claim

    NEW YORK — A federal judge in New York dismissed a putative class complaint accusing the National Football League of violating the Video Privacy Protection Act (VPPA) by sharing personal data about users of the NFL’s website, mobile application and video service with a third party, opining that the lead plaintiff’s failure to allege that prerecorded videos were viewed was “fatal” to the complaint.

  • September 19, 2024

    Planned Parenthood’s $6M Data Breach Class Settlement Given Final OK

    LOS ANGELES — A $6 million settlement by Planned Parenthood Los Angeles (PPLA) to end a consolidated class complaint accusing the reproductive health care provider of failing to protect patients’ personally identifiable information and protected health information from being accessed and stolen was granted final approval by a California judge, following the submission of additional documentation.

  • September 18, 2024

    Class Action Alleges Insurance Provider Negligently Failed To Prevent Data Breach

    NEW YORK —A class action complaint was filed in a New York federal court against a financial organization that offers insurance, retirement and investment services primarily to teachers, alleging that the defendant failed to prevent a May 2023 data breach that resulted in the theft of the personally identifiable information (PII) of its current and former clients.

  • September 17, 2024

    New Mexico Officials Appeal Ruling That Voter Data Was Wrongfully Withheld

    ALBUQUERQUE, N.M. — New Mexico’s attorney general and secretary of state filed a notice of appeal to the 10th Circuit U.S. Court of Appeals following a New Mexico federal judge’s ruling that the state violated the rights of a nonprofit voter participation organization under the First Amendment to the U.S. Constitution by withholding publicly available state voter data from the nonprofit organization.

  • September 17, 2024

    Pa. Health Provider’s $65M Data Breach Settlement Granted Preliminary Approval

    SCRANTON, Pa. — A Pennsylvania judge granted preliminary approval of a $65 million settlement to be paid by Lehigh Valley Health Network Inc. (LVHN) to end a class complaint alleging that a February 2023 data breach resulted in the disclosure of personal information and medical records, including nude photographs.

  • September 13, 2024

    Judge Grants Injunction In 1st Amendment Row Over Utah Social Media Moderation Law

    SALT LAKE CITY — In a decision addressing two cases challenging Utah state legislation to moderate social media content for minors, a Utah federal judge in the first case granted a preliminary injunction to an internet trade association company seeking to prevent enforcement of the legislation, finding that the trade association is likely to succeed on the merits of its claim that the law violates the First and 14th amendments to the U.S. Constitution.

  • September 13, 2024

    Utah Judge Rules For Insurer In Coverage Dispute Over Ill. BIPA Violation Claims

    SALT LAKE CITY — A Utah judge entered judgment in favor of a general liability insurer in its declaratory judgment lawsuit disputing coverage for an underlying action alleging its insured violated the Illinois Biometric Information Privacy Act (BIPA), finding that various policy exclusions bar coverage.

  • September 13, 2024

    Judge Finds Jurisdiction, Standing In Medical Provider Data Breach Class Action

    SHERMAN, Texas — Plaintiffs who claim to have suffered loss of value in data and emotional distress from a breach of personal information at a medical provider’s practice correctly sued in federal court because they have standing and have adequately linked their damages to the breach, a federal judge in Texas said in partly denying and partly granting the provider’s motion to dismiss.

  • September 11, 2024

    BIPA Violation Suit Did Not Trigger Coverage, Illinois Majority Rules In Reversal

    CHICAGO — A majority of an Illinois appeals court panel on Sept. 10 held that an underlying lawsuit alleging that an insured violated the Biometric Information Privacy Act did not trigger coverage under its “Cyber, Data Risk, and Media Insurance” policies, reversing the lower court’s summary judgment ruling in favor of the insured and remanding for the court to enter summary judgment in favor of the insurer on the issue of its duty to defend.

  • September 10, 2024

    Hunter Biden Wins Attorney Fees From Laptop Files Poster

    SAN FRANCISCO — A California federal judge on Sept. 9 granted Hunter Biden’s motion for attorney fees against a conservative activist and his organization, whom Biden accuses of violating computer fraud laws and California’s unfair competition law (UCL) by posting data from his private laptop online, finding that Biden is entitled to fees incurred defending against a frivolous motion to strike pursuant to California’s anti-Strategic Lawsuit Against Public Participation (SLAPP) law.

  • September 10, 2024

    Health Care Biller Will Pay $2.8M To Settle Claims Against It In Data Breach MDL

    BOSTON — A federal judge in Massachusetts in a Sept. 9 order granted preliminary approval of a $2.8 million settlement to be paid by a health care billing company that is one of a number of defendants in a data breach multidistrict litigation (MDL) that was created in the federal court after a ransomware gang stole the personally identifiable information (PII) of nearly two million individuals from hundreds of businesses that use MOVEit software.

  • September 09, 2024

    3rd Circuit Issues 1 Personal Jurisdiction Ruling In 2 Wiretapping Software Cases

    PITTSBURGH — A split Third Circuit U.S. Court of Appeals panel in a single opinion addressing jurisdiction in two putative class cases involving wiretapping software affirmed dismissal of one lawsuit for lack of personal jurisdiction and vacated dismissal of the other and remanded for the trial court to apply the traditional test in Ford Motor Co. v. Mont. Eighth Jud. Dist. Ct.

  • September 06, 2024

    Judge ‘Cautions’ WhatsApp, Denies Reconsideration To Spyware Firm In Fraud Dispute

    OAKLAND, Calif. — A California federal judge on Sept. 5 denied a spyware firm’s motion for reconsideration of the judge’s order denying as moot the firm’s request to compel WhatsApp Inc.’s production of a privilege log in WhatsApp’s suit against the firm related to its alleged computer fraud because WhatsApp has now produced the log but “caution[ed]” WhatsApp that what it calls ‘“oversights’ may be grounds for a different type of sanction.”

  • September 06, 2024

    9th Circuit: Rule Requiring Sealing Medical Records In Court Case Is ‘Overbroad’

    SAN FRANCISCO — A panel of the Ninth Circuit U.S. Court of Appeals has reversed a lower court and held in a case regarding the First Amendment right to access medical and health records in a court proceeding that a mandatory requirement to seal medical and health records under state rules pertaining to court records is “unconstitutionally overbroad.”  Rather, the panel said, the least restrictive means of protecting that interest is to have Hawaii courts consider motions to seal medical and health records on a case-by-case basis.

  • September 05, 2024

    Spyware Firm Seeks Reconsideration Of Denial As To WhatsApp’s Privilege Log

    OAKLAND, Calif. — Pursuant to a California federal judge’s order granting its motion for leave, a spyware firm filed a motion for reconsideration of the judge’s order denying as moot the firm’s request to compel WhatsApp Inc.’s production of a privilege log, asserting that WhatsApp falsely represented that it would produce the privilege log in WhatsApp’s suit against the firm related to its alleged computer fraud.

  • September 05, 2024

    Illinois Data Protection Law Covers Nonprescription Eyewear Setting, Court Says

    CHICAGO — Someone trying on nonprescription eyewear through an online tool does not qualify as a patient seeking health care, and the provider’s collection of facial scans in that setting falls outside the exclusion on health care data collection in the state’s Biometric Information Privacy Act (BIPA), an Illinois appellate court said in answering a certified question.

  • September 04, 2024

    Collection Agency Opposes Debtor’s High Court Petition On Intangible Harm, Standing

    WASHINGTON, D.C. — No review is necessary of debtor’s petition for a writ of certiorari concerning standing in a lawsuit over the transmission of debtors’ personal data to a third party as there is no circuit split on the issue of what showing of concrete intangible harm is necessary to establish standing, a collection agency argues in its brief in opposition filed in the U.S. Supreme Court.

  • August 28, 2024

    Federal Judge Grants Final Approval In Data Breach Class Action

    LINCOLN. Neb. — A Nebraska federal judge dismissed a data security breach class action and issued final approval of a $850,000 class action settlement in a data security breach suit after determining that the settlement fairly and adequately represents the interests of the class members.

  • August 28, 2024

    Judge Dismisses Putative Class Suit Over Alleged Data Breach For Lack Of Standing

    COLUMBUS, Ohio — Granting dismissal of a putative class action against a private contractor over an alleged data breach, an Ohio federal judge said the plaintiff “has not adequately pleaded that any of his PII [personally identifiable information] was improperly accessed, let alone stolen.”

  • August 27, 2024

    $725M Profile-Sharing Suit Settlement Is Fair, Facebook And Plaintiffs Tell Court

    SAN FRANCISCO — Facebook and plaintiffs who successfully reached a $725 million settlement agreement in a consolidated privacy class action over the sharing of Facebook users’ profiles with Cambridge Analytica urged the Ninth Circuit U.S. Court of Appeals to reject the appeal of two objectors who argue that the settlement should be higher and the attorney fees greatly reduced.

  • August 26, 2024

    Former Employees Reach Settlement With Philadelphia Inquirer Over Data Breach

    PHILADELPHIA —Three employees or former employees of the Philadelphia Inquirer LLC moved for preliminary approval of a $525,000 class action settlement reached with the newspaper to settle claims for damages caused by a data breach that the newspaper did not disclose to subscribers and employees for nearly a year.

  • August 22, 2024

    9th Circuit Affirms Dismissal Of Data Theft Claims Against Auto Insurer

    SAN FRANCISCO — The Ninth Circuit U.S. Court of Appeals on Aug. 21 affirmed the dismissal with prejudice of a putative class action brought against an auto insurer for failure to protect three individuals’ personal data, specifically their driver’s license numbers, from a hack of its online insurance quoting system, after finding that none of the appellants suffered an injury.

  • August 21, 2024

    9th Circuit Reverses Summary Judgment In Chrome Users’ Data Collection Suit

    SAN FRANCISCO — A Ninth Circuit U.S. Court of Appeals panel on Aug. 20 reversed a California federal judge’s entry of summary judgment on claims brought by users of Google LLC’s web browser app Chrome for collecting their personally identifiable information (PII) allegedly in violation of privacy laws and California’s unfair competition law (UCL), writing that the District Court did not properly apply the “reasonable person” standard.

  • August 21, 2024

    Sensitive Data Usage Case Against LinkedIn Survives Dismissal

    SAN FRANCISCO — The California Department of Motor Vehicles is not a necessary party to a suit alleging that LinkedIn Corp. collected and used personal information, and the plaintiff adequately alleges that the social media company unlawfully read and used the information in marketing, a federal judge in California said in partially granting a motion to dismiss.

  • August 20, 2024

    9th Circuit Affirms Injunction Over 1st Amendment Issues With Online Privacy Act

    SAN FRANCISCO — The Ninth Circuit U.S. Court of Appeals affirmed in part a district court’s order granting a preliminary injunction to a trade association of online businesses in its suit challenging the California Age-Appropriate Design Code Act (CAADCA), which was enacted to provide online privacy protections for children under 18, finding that the association was likely to succeed in showing that the act’s requirement for covered businesses to opine on and reduce the risk of children’s exposure to possibly harmful material violates the First Amendment to the U.S. Constitution.

Can't find the article you're looking for? Click here to search the Mealey's Data Privacy archive.