Mealey's Data Privacy

  • February 15, 2019

    Wendy’s Agrees To $50M Class Settlement After Franchisees Were Hacked

    PITTSBURGH — A fast food chain has agreed to pay $50 million to settle financial institutions’ class claims against its franchisees in connection with a data breach first reported in 2016, according to a motion for preliminary settlement approval filed Feb. 13 in a Pennsylvania federal court (First Choice Federal Credit Union, et al. v. The Wendy’s Company, et al., No. 16-506, W.D. Pa.).

  • February 14, 2019

    7th Circuit: No Jurisdiction In Newspaper’s Appeal Over DMV Records Publication

    CHICAGO — A Seventh Circuit U.S. Court of Appeals panel on Feb. 12 dismissed, for lack of jurisdiction, a newspaper’s appeal of a trial court ruling that found it liable under the Driver’s Privacy Protection Act (DPPA) for publishing information about Chicago Police Department (CPD) officers that it obtained from the Department of Motor Vehicles (DMV), finding that the underlying judgment did not sufficiently address what relief was awarded to the prevailing officers (Hugh Gallagly, et al. v. Sun-Times Media LLC, No. 18-3101, 7th Cir.).

  • February 14, 2019

    Facebook Defends Appeal Of Biometric Class Certification Ruling To 9th Circuit

    SAN FRANCISCO — In a Feb. 11 brief filed in the Ninth Circuit U.S. Court of Appeals, Facebook Inc. responds to a motion to dismiss its appeal of a trial court’s certification of a class suing it for violation of an Illinois biometric privacy law, disputing the plaintiffs’ assertion that a recent Illinois Supreme Court ruling on the statute resolved the issues on appeal (In re Facebook Biometric Information Privacy Litigation, No. 18-15982, 9th Cir.).

  • February 14, 2019

    Federal Class Claims Against Port Authority Alleging Taped Medical Exams To Proceed

    NEW YORK — A New York federal judge on Feb. 12 declined to dismiss federal class claims against the Port Authority of New York and New Jersey alleging that it records medical exams of employees without their consent (Charlese Talarico, et al. v. The Port Authority of New York and New Jersey, No. 18-909, S.D. N.Y., 2019 U.S. Dist. LEXIS 22766).

  • February 13, 2019

    ACLU, Washington Post Denied Access To Filings Over DOJ’s Facebook Call Wiretaps

    FRESNO, Calif. — A California federal judge on Feb. 11 denied motions by the American Civil Liberties Union (ACLU) and the Washington Post to unseal court filings in a case where the U.S. Department of Justice (DOJ) reportedly sought to compel Facebook Inc. to provide it with access to users’ private calls made via the social network, with the judge concluding that the need to maintain confidentiality in crime fighting techniques outweighed any public right of access to the records (In re U.S. Department of Justice Motion to Compel Facebook to Provide Technical Assistance in Sealed Case, Opinion and Order Issued in or About September 2018, No. 1:18-mc-00057, E.D. Calif., 2019 U.S. Dist. LEXIS 21931).

  • February 12, 2019

    D.C. Circuit Affirms Dismissal Of 3 Suits Over NSA Surveillance Program

    WASHINGTON, D.C. — In a pair of Feb. 5 rulings, a District of Columbia U.S. Court of Appeals panel upheld a trial court’s dismissal of three lawsuits over adomestic surveillance program of the National Security Agency (NSA), finding that the discontinuation of the program rendered most of the claims smoot (Larry Klayman, et al. v. Barack Obama, et al., Nos. 17-5281 and 17-5282, D.C. Cir., 2019 U.S. App. LEXIS 3572; and Larry Klayman v. James B. Comey, et al., No. 18-5097, D.C. Cir., 2019 U.S. App. LEXIS 3574).

  • February 11, 2019

    Insurer Denied Access To Plaintiffs’ Computers In Data Breach Suit

    PORTLAND, Ore. — Addressing motions to compel by both sides in a consolidated class action over a 2014 data breach experienced by Premera Blue Cross, an Oregon federal judge on Feb. 6 denied the health insurer’s request to inspect the computers and devices of the named plaintiffs, finding the request to be “not proportional to the needs of the case” and outweighed by the plaintiffs’ privacy interests (In Re:  Premera Blue Cross Customer Data Security Breach Litigation, No. 3:15-md-02633, D. Ore., 2019 U.S. Dist. LEXIS 20279).

  • February 11, 2019

    Consolidated Complaint Filed In Privacy Suit Over Facebook ‘View As’ Data Breach

    SAN FRANCISCO — A consolidated class complaint was filed against Facebook Inc. in California federal court Feb. 7, with plaintiffs alleging negligence and breach of contract related to a 2018 data breach that exposed the personal details of millions of the social network’s users through a vulnerability in the profile “View As” feature (Carl Echavarria, et al. v. Facebook Inc., No. 3:18-cv-05982, N.D. Calif.).

  • February 08, 2019

    Texas Man Sues Apple Over IPhone FaceTime Eavesdropping Glitch

    HOUSTON— Apple Inc. was hit with a negligence and products liability complaint Jan. 28, when a Texas man filed suit in Texas state court over the recently announced glitch in the FaceTime for iPhones that allowed users to eavesdrop on one another (Larry D. Williams II v. Apple Inc., et al., No. 2019-06645, Texas Dist., Harris Co.).

  • February 07, 2019

    Dismissed Federal Plaintiffs File New Google Biometric Suit In Illinois Court

    CHICAGO — One month after an Illinois federal judge dismissed their complaints against Google LLC under Illinois’ Biometric Information Privacy Act (BIPA), two Chicago residents teamed up to file similar privacy claims over Google’s photo-tagging feature in Illinois state court on Jan. 24 (Lindabeth Rivera, et al. v. Google LLC, No. 2009CH00990, Ill. Cir., Cook Co.).

  • February 07, 2019

    11 Class Actions Over Marriott Data Breach Centralized In Maryland

    WASHINGTON, D.C. — The U.S. Judicial Panel on Multidistrict Litigation (JPMDL) on Feb. 6 granted two motions to centralize 11 lawsuits against Marriott International Inc. in Maryland federal court, finding that common issues in the lawsuits over the hotel chain’s recently announced data breach made centralization appropriate and efficient (In re:  Marriott International Inc. Customer Data Security Breach Litigation, No. 2879, JPMDL).

  • February 06, 2019

    Dismissal Motion Mooted; Amended Complaint To Be Filed In Facebook Privacy Suit

    SAN FRANCISCO — Facebook Inc.’s quest to dismiss a consolidated privacy class action over its data-sharing activities with Cambridge Analytica LLC stalled after a Feb. 1 hearing on its dismissal motion, when a California federal judge granted the plaintiffs’ request to file an amended complaint, thereby, he said, mooting the social network’s motion (In re Facebook Inc., Consumer Privacy User Profile Litigation, No. 3:18-md-2843, N.D. Calif.)

  • February 05, 2019

    Kansas Constitutional Privacy Suit Over Voter Data Sharing May Proceed, Judge Says

    KANSAS CITY, Kan. — In what he called a “close question,” a Kansas federal judge on Feb. 1 found that the U.S. Constitution recognizes a right to informational privacy, leading him to deny a motion by the past and present Kansas secretaries of State to dismiss a putative class action alleging privacy violations over a program through which certain voter data was shared with other states (Scott Moore, et al. v. Kris Kobach, et al., No. 2:18-cv-02329, D. Kan., 2019 U.S. Dist. LEXIS 16339).

  • February 05, 2019

    Twitter, DOJ Debate FBI Document’s Classified Status In Gag Order Lawsuit

    OAKLAND, Calif. — The U.S. Department of Justice (DOJ) on Feb. 1 filed a reply brief in response to a California federal court’s order to show cause, arguing that a Federal Bureau of Investigation declaration should remain classified and inaccessible to Twitter Inc. in a lawsuit focusing on the social network’s quest to inform the public about its compelled role in the FBI’s surveillance program (Twitter Inc. v. Matthew G. Whitaker, et al., No. 4:14-cv-04480, N.D. Calif.).

  • February 04, 2019

    Parties In Facebook Privacy Suit Directed To Address Consent, Standing At Hearing

    SAN FRANCISCO — In a Jan. 31 pretrial order, a California federal judge in the consolidated privacy class action over Facebook Inc’s data-sharing activities with Cambridge Analytica LLC directed the parties “to pay special attention to” topics related to the plaintiffs’ purported consent to share their personal data with third parties and the social network’s disclosure of pertinent account settings  (In re Facebook Inc., Consumer Privacy User Profile Litigation, No. 3:18-md-2843, N.D. Calif.).

  • February 01, 2019

    J. Crew Patron To 3rd Circuit: Illinois Ruling Supports Standing In FACTA Suit

    PHILADELPHIA — One year after the Third Circuit U.S. Court of Appeals heard oral arguments in a customer’s lawsuit against J. Crew Group Inc. under the Fair and Accurate Credit Transactions Act (FACTA), the plaintiff on Jan. 29 filed a notice of supplemental authority, stating that a recent Illinois First District Appellate Court ruling supports his standing to sue the retailer for violating the statute’s receipt-printing guidelines without requiring evidence of additional harm (Ahmed Kamal v. J. Crew Group Inc., et al., No. 17-2345 and 17-2453, 3rd Cir.).

  • January 31, 2019

    Most Claims Over Health Insurer’s Data Breach Dismissed By Federal Judge

    WASHINGTON, D.C. — Concluding that most of the named plaintiffs suing their health insurance provider over a 2014 data breach failed to plead damages, a District of Columbia federal judge on Jan. 30 mostly dismissed their class claims for negligence, fraud and consumer protection against the insurer (Chantal Attias, et al. v. CareFirst Inc., et al., No. 1:15-cv-00882, D. D.C., 2019 U.S. Dist. LEXIS 14387).

  • January 31, 2019

    Approval Of $50 Million Settlement In Yahoo Data Breach Class Action Denied

    SAN JOSE, Calif. — A California federal judge on Jan. 28 denied a motion to preliminarily approve a proposed $50 million settlement of a consolidated class action over multiple data breaches experienced by Yahoo! Inc., citing six bases for denial, including inadequate disclosure and a lack of transparency (In re:  Yahoo! Inc. Customer Data Security Breach Litigation, No. 5:16-md-02752, N.D. Calif., 2019 U.S. Dist. LEXIS 13410).

  • January 30, 2019

    Pepsi Settles Class Suit Over Pulling Consumer Reports; Attorney Fees Reduced

    NEW YORK — A New York federal judge on Jan. 28 granted final approval of a settlement reached between Pepsi Beverages Co. (PBC) and a class of individuals whose consumer reports were pulled for employment purposes in a lawsuit over failure to provide proper disclosures, but reduced the requested attorney fees, finding that the requested percentage and hourly rates were too high (Altareek Grice, et al. v. Pepsi Beverages Company, et al., No. 17-8853, S.D. N.Y., 2019 U.S. Dist. LEXIS 13298).

  • January 30, 2019

    Consumers’, Banks’ Class Claims Over Equifax Data Breach May Proceed, Judge Says

    ATLANTA — In a trio of Jan. 28 rulings, a Georgia federal judge dismissed Fair Credit Reporting Act (FCRA) and other claims brought against Equifax Inc. by consumer and financial institution (FI) classes over its 2017 data breach, while allowing negligence and unjust enrichment claims to proceed (In Re:  Equifax Inc., Customer Data Security Breach Litigation, No. 1:17-md-2800, N.D. Ga.).

Can't find the article you're looking for? Click here to search the Mealey's Data Privacy archive.