Federal Trade Commission fines Avast for deceptive privacy claims and distributes $15.3 million to affected users
December 3, 2025
The Federal Trade Commission is one of the main regulators the deal with privacy breaches. The usual basis for action is the deceptive conduct by companies and organisations. Most recently the FTC took action against Avast for using iits browser extensions and antivirus software to collect, store and sell browsing information without notice and proper consent. The FTC took action in February 2024 seeking $16.5 million from Avast. The claim settled in June 2024.
This type of privacy breach is common enough in Australia, and other places, though not as egregious as what Avast did. Avast engaged in active deception. Companies continue to collect more information than they require to provide the service to their customers, subscribers or visitors to their sites. Organisations continue to justify this conduct. The danger to them and their clients is that if there is a data breach the misuse or overcollection or both of data will be discovered. And regulatory action will follow. Or a class action. Or both.
The most recent announcement about distribution of payments Read the rest of this entry »