Xuan Zhou

Xuan Zhou

Fisher Phillips

Contact
View Bio
RSS

Latest Publications

Share:

After Apple: What Online Businesses Need to Know About Privacy Expectations After Recent Court Decision

A recent federal court decision from California in In re Apple Data Privacy Litigation reflects an evolving judicial approach to how courts will define the boundaries of privacy in a platform-driven world. The January 20...more

2/12/2026  /  Apple , California , CIPA , Consumer Fraud , Consumer Privacy Rights , Data Collection , Data Privacy , Dismissals , Invasion of Privacy , Mobile Apps , Mobile Devices , Online Platforms , Reasonable Expectation of Privacy , Unfair Competition Law (UCL) , Unjust Enrichment , Wiretapping

California Takes Aim at Surveillance Pricing: 4 Steps for Data-Driven Businesses to Prepare

On Data Privacy Day, California Attorney General Rob Bonta announced a new investigative probe focused on businesses that use consumer data to set individualized prices, a practice commonly referred to as “surveillance...more

2/12/2026  /  California , California Consumer Privacy Act (CCPA) , Consumer Privacy Rights , Data Collection , Data Privacy , Department of Justice (DOJ) , Personal Information , Pricing , Privacy Laws , State Attorneys General , State Privacy Laws , Surveillance

Recent California Court Decision is a Reminder to Review Your Online Service Arbitration Agreements

If your business has an online presence, chances are you have an online service agreement or terms of use that include an arbitration agreement. But simply having such an agreement in place doesn’t necessarily mean it will be...more

1/16/2026  /  Arbitration , Arbitration Agreements , California , Clickwrap Agreements , Contract Drafting , Contract Terms , Corporate Counsel , Motion to Compel , Online Contracts , Service Agreements , Terms of Use , Unconscionable Contracts , Unenforceable Contract Terms

Website Tracking Lawsuit Against Retailer Dismissed for Lack of Standing: What California Ruling Means for Your Business

A California federal court recently handed businesses another major victory in the ongoing wave of privacy lawsuits targeting website analytics and tracking tools. On September 30, Judge Fernando Aenlle-Rocha of the Central...more

10/24/2025  /  Analytics , Article III , California , CIPA , Class Action , Consent , Cookies , Data Collection , Data Privacy , Data-Sharing , Dismissals , Invasion of Privacy , Privacy Policy , Standing , State Privacy Laws , Tracking Systems , Website Owner Liability , Websites

GLBA Set for Overhaul? 10 Questions That May Decide the Next Generation of Financial Privacy Law

Congress is asking the financial industry – and anyone else with a stake in consumer data – to weigh in on the future of the Gramm-Leach-Bliley Act (GLBA). On July 31, the US House Financial Services Committee leaders issued...more

8/18/2025  /  Comment Period , Consumer Information , Consumer Privacy Rights , Data Privacy , Data Protection , Data Security , Financial Institutions , Financial Services Committee , Financial Services Industry , Gramm-Leach-Blilely Act , Personally Identifiable Information , Privacy Laws , Public Comment

Federal Judge Denies CIPA Lawsuit’s Class Certification: 5 Key Takeaways for Businesses

In a significant decision for privacy class action litigation, a federal judge in California recently denied the certification of a proposed class action involving claims under the state’s invasion of privacy law. The May 29...more

6/11/2025  /  Article III , CIPA , Class Action , Class Certification , Class Representatives , Consent , Consumer Privacy Rights , Data Collection , Data Privacy , E-Commerce , Failure To Preserve , FRCP 23(a) , Invasion of Privacy , Privacy Laws , Retailers , Standing , Third-Party Liability , Web Tracking

New Class Certification Decision in App-Tracking Case Provides Critical Guidance for Businesses Facing Privacy Claims

A California federal court just certified a significant class action involving allegations that a health-tracking app improperly shared sensitive health information with third parties without user consent. The court’s May 22...more

5/30/2025  /  Breach of Contract , Class Action , Class Action Arbitration Waivers , Class Certification , Corporate Counsel , Data Collection , Data Privacy , Data-Sharing , Electronic Protected Health Information (ePHI) , Invasion of Privacy , Mobile Apps , Personal Data , Popular , Privacy Laws , Privacy Policy , Terms of Service , Web Tracking , Without Consent

Clothing Retailer Faces Big Fines for CCPA Violations: A Wake-Up Call + An Action Plan for Businesses

In a significant enforcement move, California’s consumer privacy regulator just ordered a national clothing retailer to pay a $345,178 fine to resolve alleged violations of the state’s privacy law. The California Privacy...more

5/16/2025  /  California , California Consumer Privacy Act (CCPA) , California Privacy Protection Agency (CPPA) , Consent , Consumer Privacy Rights , Corporate Counsel , Corrective Action Plans (CAPs) , Data Collection , Data Privacy , Data Processors , Enforcement Actions , Internet Retailers , Opt-Outs , Personal Information , State Privacy Laws

New Cyber Rules in Effect as of May 1 for NY Financial Firms: 3 Key Compliance Priorities

New cybersecurity requirements just kicked in for thousands of financial firms operating in New York, and companies need to make sure they have taken action to comply. As of May 1, the latest amendments to the New York...more

5/15/2025  /  Covered Entities , Cyber Threats , Cybersecurity , Financial Services Industry , Insurance Industry , New Rules , New York , NYDFS
9 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide