Skip to content Skip to navigation

Your Privacy

Allconnect Logo

It’s yet another data theft case, this time involving a phishing scam at Allconnect, Inc. According to the complaint for this class, an employee at Allconnect received an e-mail that was supposedly from the president of the company asking for “all 2017 Allconnect employee W-2 information.” The employee complied, sending the impostor the personally identifying information (PII) of the company’s employees, including names, Social Security numbers, and wage and withholding information. The complaint claims that the scam was a well-known one that human resources and accounting professionals should have known about. 

Seagate Building

Seagate is settling a class action related to a phishing attack that occurred on or around March 1, 2016. The attack exposed the 2015 Form W-2 data of employees who worked for Seagate or certain affiliated companies during 2015. According to the complaint, fraudulent tax returns were filed in some employees’ names, sometimes jointly in their spouses’ names as well.

Panra Soup in Bread Bowl

Six plaintiffs bring this class action against Panera Bread Company for allegedly leaving their personal identifying information available in plain text. Customers were required to surrender this information when setting up the Panera Rewards or MyPanera accounts. Panera not properly safeguard this information, the complaint claims, and after it was informed of the problem, it ignored it for eight months. The counts in the complaint include violations of the Illinois Personal Information Protection Act and Consumer Fraud and Deceptive Business Practices Act as well as the tort of intrusion upon seclusion, breach of contract, negligence, and violation of the right of privacy.

Facebook "f" Logo with Silhouettes

This class action alleges that Facebook, Inc. allowed Cambridge Analystica, LLC (CA) to mine the data of some 50 million Facebook users, for the purpose of influencing voters in what the complaint calls “an unprecedented attack on democracy”—not to mention an unprecedentedly  massive misuse of personal information. Facebook has admitted that most of its users have likely had their information scraped by outsiders, which the complaint claims is a violation of the Stored Communications Act, the Alabama Deceptive Trade Practices Act, and common law.

Silhouettes of Users Against Facebook Logo

Facebook had over 2.2 billion users as of the end of 2017. The complaint for this securities class action claims that Facebook did not protect these users’ privacy according to its own policies, violating the Securities Exchange Act of 1934 and making it possible for companies to lift data for their own purposes. The complaint cites European investigations, the Cambridge Analytica lifting of some 50 million users’ data, and an FTC investigation into whether the company had possibly violated a 2011 consent decree meant to improve user privacy. 

Academy of Art Building in  in San Francisco, CA

The Academy of Art University (AAU) was fooled by a spoofing scam in April 2016, sending out IRS wage and tax statements of roughly 3,000 current and former AAU employees to a stranger. The information sent included names, addresses, dates of birth, wages, and Social Security numbers.

Eddie Bauer Duffel Bag

Eddie Bauer is settling a class action claiming it violated California’s privacy laws by recording conversations with customers without their consent. 

Rolling Stone Magazine Cover

Wenner Media, LLC has decided to settle a class action concerning subscriptions to its Rolling Stone, Men’s Journal, and Us Weekly publications. The lawsuit alleged that Wenner disclosed subscriber information to third parties, in violation of Michigan state laws. 

Uber Logo on SmartPhone

When you discover that your company’s systems have been hacked, do you (a) announce it, investigate, and hope to punish those responsible, or (b) pay the hackers $100,000 to keep quiet about it? The complaint for this class action claims that Uber chose to bribe the criminals who stole customer and driver data. The complaint claims that Uber failed to safeguard customers’ and drivers’ information and is therefore guilty of negligence and breach of implied contract.

Red "Record" Button

When plaintiff Tuan Nguyen spoke to SquareTrade, Inc. on the telephone, she had no idea that the call was being recorded. According to the complaint for this class action, that recording was a violation of the California Invasion of Privacy Act (CIPA), which requires the permission of all parties before recording cell phone calls.