- Published Articles
- In the Press
- Press Releases
Sign Up for Alerts
Sign up to receive receive industry-specific emails from our legal team.
Sign Up for Alerts
We provide tailored, industry-specific legal updates to our clients and other friends of the firm.
Areas of Interest
April 18th, 2013
Drive-By Storing: Google Agrees to Pay $7 Million to Settle Street View Privacy Case
According to a recent settlement, in addition to images of the world's roads and buildings, Google's special Street View vehicles may have also collected personal information from users on unencrypted business and personal wireless networks.
The settlement ends a two year, multi-state investigation that was led by the Connecticut Attorney General's Office. According to the settlement, Google executives were not aware that the software used in its vehicles was collecting personal data, which may have included URLs of requested Web pages, email addresses, partial or complete email communications, and any confidential or private information being transmitted to or from the network user at the time. Google alleges that it never used this data, and once discovered, the company took steps to segregate and secure the data. According to a press release issued by the Connecticut AG's Office, Google has since disabled or removed network identification and data collection equipment and software from its Street View vehicles, and has agreed not to collect additional data through the vehicles without notice and consent.
In addition to the payment of $7 million dollars, which will be divided among the 38 states (and the District of Columbia) involved in the investigation, the settlement requires Google to destroy the collected data and to set up a privacy program that includes, among other requirements, annual privacy week events for employees, privacy certification programs for selected employees, refresher training for its lawyers overseeing new products, and training programs for employees who deal with privacy matters. In addition, the settlement requires Google to issue a public service campaign to educate consumers on ways they can secure their data while on wireless networks. The public service campaign will run as a how-to video on YouTube, on Google's public policy blog, on informational pamphlets, and as half-page ads in major newspapers in the states involved in the investigation. Google has been the subject of other privacy enforcement actions. For example, in 2012, the FTC fined Google $22.5 million for impermissibly tracking users of the internet browser Safari in violation of an earlier privacy settlement order -- the largest penalty ever levied by the FTC for violation of a settlement order.
The Street View settlement makes clear that data collection remains a regulatory hot spot. If you need advice about data collection, or have other advertising and marketing law concerns, please contact S. Gregory Boyd at (212) 826 5581 or firstname.lastname@example.org, Claudine Wilson at (212) 705 4842 or email@example.com, or any other member of the Frankfurt Kurnit Technology, Digital Media and Privacy Group.
Other Privacy & Data Security Law Alerts
A Big Phone Bill: Dish Network Telemarketing Violation Verdicts Total Approximately $341 Million
In a cautionary tale for marketers, two courts recently found satellite TV provider Dish Network ("Dish") liable for repeated and willful violations of federal and state telemarketing laws.
June 23 2017
Start Your Engines: We Have to Deal With GDPR, What Now?
Back in January, we posted about the circumstances in which your company, even if based in the US, must comply with the EU General Data Protection Regulation (GDPR), taking effect in May 2018. Here we will provide a high level checklist to help you start down the path of GDPR readiness.
April 13 2017
No Harm, No Foul: Court Dismisses Biometric Data Privacy Class Action Against NBA 2K Games
Biometric data — from, e.g., retina, face and fingerprint scans — plays a big role in the current wave of new technology services. For example, biometrics provide security features for financial and healthcare products. But companies using or thinking of using biometric data have to comply with myriad privacy and data security laws and regulations, or face potential enforcement action and litigation.
February 16 2017