The Cyber Fraud Unit advances the Division's consumer protection mandate by safeguarding New Jersey consumers' constitutional right to privacy in the digital age. Data security and data privacy are among the fastest-growing economic and personal concerns facing New Jersey consumers. Today, consumers provide sensitive personal information to merchants daily and with the expectation that the merchant will safeguard this information. While the vast majority of merchants operate lawfully, oftentimes there are those that seek to profit by misusing, unlawfully acquiring or unlawfully selling consumers' personal information.
As part of the Division's enforcement arm, the Unit enforces the
New Jersey Consumer Fraud Act, which prohibits the use of unconscionable commercial practices and deception, including tracking consumers' online behavior and/or downloading malware onto consumers' computers without providing adequate notice to, and obtaining meaningful consent from, consumers. In some cases, the Unit enforces the
New Jersey Computer Related Offenses Act
(CROA), which prohibits, among other things, the purposeful or knowing and unauthorized access of New Jersey consumers' data, database, computer program, computer software or computer equipment; the federal
Children's Online Privacy Protection Act of 1998 and regulations
(COPPA) ; the
New Jersey Identity Theft Protection Act; the
Health Information Technology for Economic and Clinical Health Act
(HITECH), and the
Health Insurance Portability and Accountability Act of 1996
(HIPAA). In addition, the Unit's investigators take an active role in educating consumers concerning how they can protect their personal information when using Internet-based technologies.
Consumer Alerts
Enforcement
2021
-
March 18, 2021
AG Grewal Announces First-in-the-Nation Settlement with Ghost Gun Company
Read More
-
March 11, 2021
AG Grewal Announces Multistate Settlement with American Medical Collection Agency Over 2019 Data Breach
Read More
-
January 11, 2021
AG Grewal Announces that Florida Company Agrees to Stop Selling Large Capacity Ammunition and to Pay $135,000 to Settle Lawsuit over Sales into New Jersey
Read More
2020
-
December 23, 2020
AG Grewal Announces NJ’s Participation in $2.4 Million Settlement over Sabre Hospitality Solutions Data Breach
Read More
-
December 18, 2020
AG Grewal Joins $2 Million Settlement with Online Retailer CafePress over 2019 Data Breach
Read More
-
November 24, 2020
AG Grewal Announces Settlement with Home Depot over Data Breach that Compromised Personal Data of Millions – NJ to Receive more than $579,000 Share of $17.5 Million Settlement
Read More
-
November 24, 2020
AG Grewal Announces Settlement with Home Depot over Data Breach that Compromised Personal Data of Millions – NJ to Receive more than $579,000 Share of $17.5 Million Settlement
Read More
-
November 2, 2020
AG Grewal Announces ShopRite, Wakefern to Pay $235,000 and Improve Data Security in Settlement over Privacy Lapses at Supermarket Pharmacies
Read More
-
October 20, 2020
AG Grewal Kicks Off Cybersecurity Awareness Month by Urging Vigilance as Data Breaches, Internet Fraud, and Online Threats to Children Rise During COVID Emergency
Read More
-
October 8, 2020
AG Grewal: NJ Reaches Settlement with Community Health Systems over Data Breach
Read More
-
September 10, 2020
Nevada Firearms Dealer Will Stop Selling Large Capacity Ammunition Magazines into New Jersey and Pay $50,000 to Settle Lawsuit After Illegal Online Sales to Undercover State Investigators
Read More
-
September 3, 2020
AG Grewal: NJ Resolves Anthem Data Breach Investigation for Over $500,000 and Policy Changes at the Health Insurance Company
Read More
-
August 22, 2020
Division of Consumer Affairs Brings First Action to Enforce State’s Fantasy Sports Law
Read More
2019
-
October 31, 2019
NJ Announces New
“Cyber Savvy Youth” Initiative to Keep Kids Safe Online and Releases Annual Statistics on Cyber Breaches
Read More
-
August 22, 2019
AG Grewal Announces New Agreement with Telecom Companies To Combat Illegal and Unwanted Robocalls
Read More
-
June 19, 2019
Attorney General Grewal Files First State Lawsuit Against Company for Selling Large Capacity Magazines into NJ
Read More
-
March 22, 2019
AG Grewal Files First State Lawsuit Against
“Ghost Gun” Company for Offering Untraceable Guns in NJ
Read More
2018
-
December 10, 2018
New Jersey Division of Consumer Affairs Announces Settlement with EmblemHealth Over Sensitive Personal Information Breach
Read More
-
November 2, 2018
Defunct Georgia Vendor Responsible for Exposing Virtua Medical Group Patient Files Online Agrees to $200,000 Settlement
Read More
-
October 23, 2018
NJ Releases Annual Statistics on Cyber Breaches; Reminds Residents to Protect their Online Privacy During National Cybersecurity Awareness Month
Read More
-
October 10, 2018
AG Grewal Reaches Settlement with Aetna over Privacy Violations
Read More
-
September 26, 2018
AG Grewal Announces Historic Settlement Resolving Uber Data Breach
Read More
-
August 3, 2018
Operator of Teen Social Website Breached by Hacker Agrees to Close Site and Reform Practices to Settle Allegations it Violated Children’s Online Privacy Protection Act
Read More
-
June 6, 2018
Third-party Energy Supplier IDT Energy, Inc. Enters into $1.36 Million Settlement with the State to Resolve Allegations It Preyed on Consumers During the Harsh Winter of 2014
Read More
-
May 8, 2018
NJ Division of Consumer Affairs Announces $100,000 Settlement with App Developer Resolving Investigation Into Alleged Violations of Children’s Online Privacy Law
Read More
-
April 4, 2018
Virtua Medical Group Agrees to Pay Nearly $418,000, Tighten Data Security to Settle Allegations of Privacy Lapses Concerning Medical Treatment Files of Patients
Read More
2017
-
November 17, 2017
N.J. Residents Deceived into Paying Scammers via Western Union Can Apply for Compensation from Settlement Fund
Read More
-
October 30, 2017
NJ Releases Annual Statistics on Cyber Breaches for the First Time
Read More
-
September 15, 2017
New Jersey Joins Multi-State Call for Equifax to Disable Fee-Based Monitoring Services, Reimburse Fees for Security Freezes
Read More
-
February 17, 2017
Horizon Blue Cross/Blue Shield of New Jersey Agrees to Pay $1.1 Million, Tighten Data Security to Settle Allegations of Privacy Lapses Concerning Personal Information of Policyholders
Read More
-
February 6, 2017
New Jersey Division of Consumer Affairs, Federal Trade Commission Reach $2.5 Million Settlement with Smart TV Manufacturer to Settle Allegations of Invasive Data Collection
Read More
2015
-
September 9, 2015
New Jersey Division of Consumer Affairs Obtains Settlement with Mobile App Developer That Allegedly Collected Consumer Information without Notice and Consent in Violation of State Law
Read More
-
June 29, 2015
New Jersey Division of Consumer Affairs, Federal Trade Commission, Reach Settlement with Developer of Mobile App that Allegedly Hacked New Jersey Smartphones with Harmful Malware
Read More
-
May 26, 2015
New Jersey Division of Consumer Affairs Obtains Settlement with Developer of Bitcoin-Mining Software Found to Have Accessed New Jersey Computers Without Users' Knowledge or Consent
Read More
2013
-
November 23, 2013
Acting Attorney General Announces Settlement Resolving Allegations That Maker of
"Dokobots" App Violated Children's Online Privacy Rules
Read More
-
November 21, 2013
Acting Attorney General Announces Settlement Resolving Allegations Data Company Engaged in Online
"History Sniffing"
Read More
-
November 19, 2013
Acting Attorney General Announces $1 Million Settlement Resolving Consumer Fraud, Unlawful Access Claims Against Online Gaming Company
Read More
-
November 18, 2013
New Jersey Joins Multi-State Settlement that Resolves Allegations Google Breached Privacy Settings on Safari Browsers
Read More
-
July 25, 2013
New Jersey Division of Consumer Affairs Obtains Million-Dollar Settlement with Online Advertising Company Accused of Overriding Consumers' Privacy Settings Without Consent
Read More
Consumer Briefs
Useful Links