Oklahoma AG Gentner Drummond sued Temu and related entities for allegedly violating the Oklahoma Consumer Protection Act through undisclosed data collection and deceptive retail practices. In the petition, the AG’s office alleges that the Temu app collects sensitive user data beyond what is necessary and without adequate disclosure or meaningful consumer consent, and uses evasion…

Read More

California AG Rob Bonta, with several California district attorneys and investigative support from the California Privacy Protection Agency, reached a $12.75 million settlement with General Motors and OnStar resolving allegations that the companies violated the various state consumer protection laws by selling consumers’ driving and location data without adequate notice or consent.

Read More

Montana AG Austin Knudsen is investigating Ford Motor Company and Stellantis N.V. for allegedly violating the state’s consumer protection law by collecting and selling drivers’ vehicle data without adequate disclosure or consent.

Read More

The FTC reached a proposed settlement with the operators of OkCupid to resolve allegations that the dating app violated Section 5 of the FTC Act by sharing users’ personal information with a third-party AI company despite promising otherwise in its privacy policy.

Read More

Iowa AG Brenna Bird filed a lawsuit against healthcare claims clearinghouse Change Healthcare Inc. and its owners and operators alleging that cybersecurity and breach-response failures during a 2024 cyberattack violated the Iowa Consumer Fraud Act and the Personal Information Security Breach Protection Act. The petition claims the companies used outdated, insecure systems that lacked basic…

Read More