New York AG Letitia James settled with Root Insurance Company to resolve allegations that the company’s data security deficiencies led to a 2021 data breach involving 72,000 people, in violation of state consumer protection and data security laws. According to the settlement, Root inadequately safeguarded personal information that its online automobile insurance quoting tool prefilled…

Read More

Arkansas AG Tim Griffin sued General Motors LLC and its subsidiary OnStar LLC (collectively, “GM”) over allegations that GM misled vehicle purchasers into enrolling in programs that collected and shared their driving data with third parties in violation of state consumer protection law. According to the complaint, GM used aggressive marketing and deceptive sales tactics to…

Read More

Texas AG Ken Paxton has announced an investigation into the artificial intelligence company DeepSeek’s privacy practices and its claims that its AI model rivals the most advanced AI models in the world, including OpenAI.

Read More

In a webinar hosted on January 14, 2025,  the Cozen O’Connor State AG Group, in partnership with the U.S. Chamber of Commerce Institute for Legal Reform, discussed the impacts of new federal agency leadership and the role of state attorneys general as regulators and enforcers, with a particular focus on four critical sectors: financial services,…

Read More

Nebraska AG Mike Hilgers filed a lawsuit against Change Healthcare Inc. and its owners and operators (collectively, “Change”)—which provide a data clearinghouse used by healthcare providers, pharmacies, and insurers—alleging that the company’s data security and other operational failures in connection with a February 2024 cyberattack violated state consumer protection laws. The complaint alleges that Change’s systemic failures…

Read More