Privacy Policy News
& Data Breach Tracker

On May 4, 2026, Braintrust, an AI evaluation platform, discovered unauthorized access to its AWS account containing customer API keys used to access cloud-based AI models. The company locked down affected systems and urged customers to rotate their API keys, with one customer confirmed directly affected and three others reporting suspicious usage spikes under investigation. The breach highlights risks of storing sensitive credentials with third-party AI platforms and demonstrates how attacker...

The Trump administration is reportedly nearing a $400 million settlement with TikTok over allegations that the company illegally collected data from millions of children under 13 without parental consent, violating federal child privacy laws. The lawsuit, originally filed by the Biden administration in 2024, accused TikTok of continuing to serve ads to underage users and exposing them to adult content. According to reports, the settlement funds may be redirected to fund the president's propos...

Google has agreed to pay $50 million to settle a class-action lawsuit filed by Black employees alleging the company engaged in systemic racial discrimination in hiring, pay, and promotions. The 2022 lawsuit claimed Google steered Black workers into lower-level positions, subjected them to hostile work environments for speaking out, and used biased criteria like "not Googly enough" to reject Black candidates. While Google denies wrongdoing, the settlement received final court approval in 2025.

A federal judge declined to immediately approve a $1.5 million settlement between Elon Musk and the SEC over allegations he delayed disclosing his 5% stake in Twitter by 11 days in 2022, potentially saving $150 million. Judge Sparkle Sooknanan ordered both parties to appear in court and provide briefs justifying the settlement's fairness and whether it serves the public interest. The SEC lawsuit, filed days before the Biden administration ended, accused Musk of violating disclosure rules duri...

Apple has agreed to pay $250 million to settle a class action lawsuit alleging the company misled customers about the availability of Apple Intelligence features, particularly an enhanced Siri, when marketing the iPhone 15 Pro and iPhone 16 models. US customers who purchased these devices between June 2024 and March 2025 can claim $25 to $95 per device, depending on claim volume. Apple denied wrongdoing but settled to avoid prolonged litigation over advertisements that promoted AI capabilitie...

Meta is deploying AI technology across Facebook and Instagram to detect underage users by analyzing profile content, photos, and videos for age-related clues like birthday mentions, school grades, and physical characteristics such as height or bone structure. Accounts flagged as potentially underage will be deactivated until the user provides age verification, with the technology expanding to Instagram Reels, Live, and Facebook Groups. Meta emphasizes this visual analysis assesses general age...

Elon Musk settled an SEC lawsuit by agreeing to pay a $1.5 million fine through a trust for failing to timely disclose his purchase of over 5% of Twitter stock in 2022, which the SEC alleged allowed him to buy shares at artificially low prices and save approximately $150 million. Under the settlement, Musk does not admit wrongdoing and is not required to return the $150 million he allegedly saved at the expense of other investors who sold shares during the delayed disclosure period. Critics, ...

A New Mexico court ordered Meta to pay $375 million in a child safety case, and the state is now seeking additional court-ordered changes to Meta's business practices including age verification for state users, banning end-to-end encryption for those under 18, and usage caps of 90 hours per month for minors. While the requirements would technically apply only to New Mexico, Meta could extend them to other states for operational simplicity, potentially setting a precedent for court-mandated ch...

Ireland's Supreme Court ruled that TikTok can continue its current data practices while appealing a €530 million fine imposed by the Data Protection Commission for allegedly allowing engineers in China to access European user data in violation of GDPR rules. The court dismissed the regulator's challenge to a stay order, finding that decisions about pausing enforcement actions fall under Irish national law rather than EU law. TikTok users' personal data remains accessible to ByteDance engineer...

Nigeria's Data Protection Commission imposed a $32.8 million fine on Meta in February 2025 for processing data from over 60 million Nigerian users without proper consent and making unauthorized cross-border data transfers. In October 2025, Nigeria quietly settled with Meta, waiving the entire fine in exchange for Meta covering legal costs and committing to vague improvements, with the settlement explicitly stating no admission of wrongdoing. The reversal eliminated most of the original enforc...