The several lawsuits following the July data breach of women-only app Tea expose gaps in data governance and data protection guardrails that may be present within the entire app ecosystem, said Mary Bennett and Rob Robinson of privacy vendor HaystackID in a Friday blog post. First reported on July 25, the breach of Tea leaked 72,000 images, including 13,000 selfies with identifying information (see 2507280017). The app is intended to increase safety for online daters.
Meta faces a claim that it operates as a pen register device, prohibited under the California Invasion of Privacy Act (CIPA), after a federal court declined to drop the claim from a pixel tax-filing case Wednesday.
As privacy litigation under older laws has exploded, some have called for amending decades-old statutes often at the center of lawsuits so that they aren't applied to modern technologies. The California Invasion of Privacy Act (CIPA) in particular has been subject to more scrutiny as litigation has increased (see 2503030050).
A July data breach of Allianz Life Insurance Co. of North America precipitated a flurry of lawsuits alleging inadequate safety procedures. The company said the data breach exposed the personal information of most of its 1.4 million U.S. customers and stakeholders.
Bitcoin Depot failed to adequately protect the personally identifiable information (PII) of more than 26,000 individuals, which was then exposed in a data breach, a class-action complaint alleged Friday in the U.S. District Court for Northern Georgia. Lead plaintiff Quincey Hall's lawsuit alleges negligence, invasion of privacy, breach of implied contract and violations of the Georgia Uniform Deceptive Trade Practices Act, among other claims.
Home Depot's AI-powered system that manages inventory and mitigates theft at self-checkout stations violates the Illinois Biometric Information Privacy Act (BIPA), said a class-action lawsuit filed Friday. Called Computer Vision, the system uses cameras and machine learning to perform facial recognition and collect customer facial geometry, lead plaintiff Benjamin Jankowski alleged in case 25-09144.
Satirical news site The Onion asked a federal court Friday to drop a case against it alleging violations of the Video Privacy Protection Act (VPPA), on the grounds that the plaintiff lacks standing and because "courts are beginning to 'shut the door for Pixel-based VPPA claims.'” Case 25-05471 alleges the news site deployed a tracking pixel on its site that transmitted a subscriber's personally identifiable information (PII) to third parties without his prior knowledge or consent (see 2505200012).
Tesla was hit with a class-action suit Thursday alleging California Invasion of Privacy Act (CIPA) violations through the car company's use of tracking pixels on its website without the knowledge or consent of visitors. Plaintiff Peter Dawidzik alleged that the company uses the trackers to collect detailed user information like IP addresses, pages visited, mouse movements and even geolocation based on IP, and then shares the data with third parties such as Twitter and Google.
A women-only app intended to enhance safety for online dating users has disabled its direct messaging (DM) feature after learning that some messages were accessed during a data breach that occurred July 25 (see 2507280017). Earlier this month, the Tea app suffered a breach that leaked 72,000 images, including 13,000 selfies with identifying information.
A women-only app intended to enhance safety for online dating users suffered a breach this month that leaked 72,000 images, including 13,000 selfies with identifying information, a law firm investigating the breach said Friday. Edelson Lechtzin is investigating the breach of the Tea app for a potential class-action on behalf of victims.