Legal Library: Cases and Proceedings

LifeLock paid $100 million to settle Federal Trade Commission contempt charges that it violated the terms of a 2010 federal court order that requires the company to secure consumers' personal information and prohibits the company from deceptive advertising. 

Google LLC and its subsidiary YouTube, LLC agreed to pay a $170 million civil penalty to the Federal Trade Commission and the New York Attorney General to settle allegations that the YouTube video sharing service illegally collected personal information from children without their parents’ consent in violation of the Children’s Online Privacy Protection Act Rule (COPPA).

LightYear Dealer Technologies, LLC settled Federal Trade Commission allegations that the auto dealer software provider failed to take reasonable steps to secure consumers' data, leading to a breach that exposed the personal information of millions of consumers. 

The Federal Trade Commission filed a complaint against medical testing laboratory LabMD, Inc. alleging that the company failed to reasonably protect the security of consumers’ personal data, including medical information.

The FTC alleged that while SecurTest initiated a Privacy Shield application in September 2017 with the U.S. Department of Commerce, the company did not complete the steps necessary to be certified as complying with the frameworks. Because it failed to complete certification, SecurTest was not a certified participant in the frameworks, despite representations to the contrary on its website. The settlement with the FTC prohibits SecurTest from misrepresenting its participation in any privacy or security program sponsored by a government, self-regulatory, or standard-setting organization, including the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield frameworks. It also must comply with reporting and compliance requirements.

Equifax, Inc. agreed to pay at least $575 million, and potentially up to $700 million, as part of a global settlement with the Federal Trade Commission, the Consumer Financial Protection Bureau (CFPB), and 50 U.S. states and territories to settle allegations that the credit reporting company's failed to take reasonable steps to secure its network. 

D-Link Systems, Inc., agreed to implement a comprehensive software security program in order to settle Federal Trade Commission allegations over misrepresentations that the company took reasonable steps to secure its wireless routers and Internet-connected cameras. 

James V. Grago, Jr. online rewards website ClixSense.com settled allegations from the Fewill be required to implement a comprehensive information security program before collecting personal information as part of a final settlement with the Federal Trade Commission related to allegations that he failed to take reasonable steps to protect personal data.

Unixiz, Inc., doing business as i-Dressup.com, and the individually named defendants CEO Zhijun Liu and Secretary Xichen Zhang, reached a settlement over allegations they violated the Children’s Online Privacy Protection Act (COPPA).