DoorDash fined $375K in second public CCPA enforcement
By 
Kyle Brasseur2024-02-22T12:54:00
Food delivery company DoorDash agreed to pay a $375,000 fine as part of a settlement announced by California Attorney General Rob Bonta addressing alleged violations of the California Consumer Privacy Act (CCPA).
The enforcement action, announced Wednesday, is the second to be levied publicly since the CCPA took effect in January 2020. The first action came down more than one year ago, when Sephora was assessed a $1.2 million penalty in August 2022 for violating the consumer privacy law.
Regarding DoorDash, the attorney general alleged the company ran afoul of the CCPA and the California Online Privacy Protection Act (CalOPPA) in relation to its participation in a marketing cooperative that saw it share customer personal information with other companies in exchange for advertising opportunities.
Related articles
-
News BriefSpongeBob game developer ordered to pay $500K over CCPA, COPPA violations
Popular children’s mobile game developer Tilting Point Media agreed to pay $500,000 to settle allegations the company illegally collected children’s personal data, a violation under the California Consumer Privacy Act and a federal children’s privacy law.
-
PremiumCalifornia privacy reg seeking more input on new rules
Businesses will receive additional time to weigh in on proposed regulations by the California Privacy Protection Agency regarding risk assessments, cybersecurity audits, automated decision-making, and data broker registration before they’re potentially finalized later this year.
-
News BriefKey lawmakers put forward bipartisan American Privacy Rights Act
A bipartisan consumer privacy bill released by Sen. Maria Cantwell (D-Wash.) and Rep. Cathy McMorris Rodgers (R-Wash.) would provide the broad, comprehensive protections businesses and Americans have called for, according to the lawmakers.
More from Regulatory Enforcement
-
ArticleLarge wound care practice pays $45M, agrees to monitoring
One of the largest wound care practices in the nation and its founder have agreed to pay $45 million and be subjected to third-party monitoring, to settle allegations that the business intentionally overbilled Medicare by priming its electronic medical records system to do so.
-
News BriefSEC dismisses SolarWinds case tied to 2020 cyberattack
The dismissal of charges against SolarWinds for alleged cybersecurity lapses related to a 2020 Russian cyberattack in 2020 are the latest in a continuing pattern of leniency for corporations by the Trump administration.
-
PremiumPart Two: FCPA cases closed by DOJ, SEC since January
Since the start of the Trump Administration, the Department of Justice has been winding down a number of Foreign Corrupt Practices Act investigations with little public attention. This second article further explores how and why these FCPA matters have been closed.