Potentially signaling an expansion of the scope of constitutional standing in data breach cases, a district court in the Northern District of California recently held that the exposure of users’ non-sensitive, publicly available personal information may be sufficient to establish an injury-in-fact.
Click here, to continue reading on the Cleary Cybersecurity and Privacy Watch blog. This article was also republished by the NYU Compliance & Enforcement blog.