Surge in CIPA Wiretap Lawsuits Targets Business Websites Over Third-Party Data Sharing
A wave of demand letters and copycat lawsuits is sweeping the country, accusing ordinary business websites of violating the California Invasion of Privacy Act (CIPA) through standard data-sharing practices with third-party vendors. A small group of repeat claimants systematically scans websites, documents data flows to outside vendors, and threatens litigation under CIPA — targeting any site accessible from California. The article explains the legal playbook, the surge in claims, and the implications for businesses nationwide.
Key quotes
Demand letters and copycat lawsuits are piling up on the desks of in-house counsel and business owners around the country, all making the same claim: that an ordinary website is secretly running an illegal wiretap.
A small group of repeat claimants combs through business websites, records what data each site hands off to outside vendors, and then sends a formal-looking package threatening suit in California.
Any website a California visitor can open is a potential target.
From the article
You might also wanna read
Meta Found Guilty of Violating Privacy Law in Menstrual Data Case
A jury ruled that Meta violated the California Invasion of Privacy Act by recording sensitive health data from millions of women through the
Supreme Court's Chatrie Case Challenges Third-Party Doctrine on Geofence Warrants and Location Data
The Supreme Court's decision in Chatrie vs US brings renewed scrutiny to the third-party doctrine as applied to geofence warrants and modern
Study Finds 38% of Top Websites Use Third-Party Keystroke Interception That May Violate U.S. Wiretapping Laws
This paper presents a tech-law analysis examining the use of JavaScript event listeners by third-party trackers for real-time keystroke inte
Jury Rules Meta Violated Privacy Laws by Eavesdropping on Period-Tracker App Users
A San Francisco jury ruled that Meta violated the California Invasion of Privacy Act by eavesdropping on users of the period-tracking app Fl
Meta Found Guilty of Violating California Privacy Laws by Collecting Flo Users' Menstrual Data
A California jury ruled that Meta violated state privacy laws by collecting menstrual health data from Flo app users without consent, using

Comments
Sign in to join the conversation.
No comments yet. Be the first.