Hollywood movie star Reese Witherspoon and her clothing line, Draper James, LLC, have found themselves the subjects of a public relations debacle, and now, a class action after running a promotion for teachers that has gone horribly wrong.

To read more about the implications of advertising and promotion rules and the impact of the California

The New York Attorney General settled cases with five companies – Equifax, Western Union, Priceline.com, Spark Network and Credit Sesame – for having mobile apps that failed to keep sensitive user data secure when transmitted over the Internet. The companies’ mobile apps suffered from a well-known security vulnerability that could have allowed hackers to intercept

Mobile phone manufacturer Blue Products, Inc. and its co-owner and President, Samuel Ohev-Zion (collectively, “BLU”), reached a settlement with the Federal Trade Commission (“FTC”) over allegations that BLU misled consumers by allowing a China-based third party to collect detailed personal information about consumers.  The FTC alleged that the Chinese entity collected U.S. consumers text message

The Federal Trade Commission (“FTC”) settled with online dating website AshleyMadison.com for $1.6 million stemming from FTC and state actions brought against the company as a result of a July 2015 data breach that exposed the profile and account information of approximately 36 million users. In addition to the settlement, AshleyMadison.com must also implement a

A recent class action lawsuit is alleging that cell phone manufacturer Blu Products, Inc. (“Blu”) and firmware providers Shanghai Adups Technology Co., Ltd. and Adups USA LLC (“Adups”) violated several federal privacy laws by selling cell phones containing firmware that collected user’s sensitive personal information and transmitted that information to servers in China. This complaint

On October 25, the Federal Trade Commission released “Data Breach Response: A Guide for Business,” its latest guidance on data privacy and security regulation. The Guide seeks to help businesses comprehend the Agency’s understanding of both legal requirements and best practices, although what is legally required versus what is encouraged continues to be challenging for

On October 27, 2016, the FCC adopted a new set of privacy and data security regulations applicable to “broadband service providers and other telecommunications carriers.”

The rules place new restrictions on internet service providers’ (“ISPs”) ability to use and share their customers’ data. The Commission established two data classifications: (1) sensitive information, and (2) non-sensitive