Mobilewalla Case Highlights Growing Risks of Mishandling Consumer Privacy
In a groundbreaking move, the Federal Trade Commission (“FTC”) has taken action against Mobilewalla, Inc., a Georgia-based data broker, for collecting and selling sensitive location data without obtaining proper consumer consent. The FTC said their proposed settlement, announced on December 3, 2024, is a significant step in safeguarding consumers’ privacy and holds Mobilewalla accountable for its practices. The data broker’s actions have raised serious concerns about the security and ethical implications of using consumer data for targeted marketing and advertising.
The FTC’s complaint against Mobilewalla alleges that the company collected vast amounts of personal and sensitive data, including precise location information, from real-time bidding exchanges and third-party aggregators between January 2018 and June 2020. This data, which included visits to healthcare facilities, places of worship, and other sensitive locations, was not anonymized, putting consumers at risk of being identified and targeted based on their personal activities. In some instances, Mobilewalla even developed audience segments for its clients, based on sensitive characteristics such as medical conditions or religious beliefs, and sold this information to third parties.
One of the FTC’s primary concerns is that Mobilewalla’s data collection practices were done without consumer knowledge or consent. The company sold access to raw location data to a wide range of third parties, including advertisers, data brokers, and analytic firms. The FTC argued that this not only violated consumers’ privacy but also exposed them to potential harm, including discrimination, emotional distress, and physical violence. Furthermore, Mobilewalla collected this data without proper safeguards to ensure that consumers understood what information was being gathered or how it would be used.
In response to these violations, the FTC has proposed a series of measures that would significantly impact Mobilewalla’s business practices. Under the settlement order, the company would be prohibited from selling or disclosing sensitive location data, particularly data linked to health clinics, religious organizations, political gatherings, and military installations. Mobilewalla would also be required to implement a comprehensive privacy program and take additional steps to ensure transparency in how consumer data is collected, used, and retained.
For businesses involved in data collection or online advertising, the case highlights the critical importance of protecting consumer privacy and ensuring that data collection practices comply with FTC regulations. The FTC said their ruling makes it clear that companies must obtain explicit consent from consumers before collecting or using sensitive data. Additionally, businesses must establish clear policies for handling consumer data, including data retention and deletion protocols, and ensure that sensitive data is not shared or sold to third parties without appropriate consent.
This case is a wake-up call for businesses that rely on consumer data for marketing purposes. Companies must be transparent about their data collection practices and ensure that they have the necessary systems in place to protect consumer privacy. As the digital landscape continues to evolve, businesses that fail to prioritize consumer trust and privacy may face significant legal and reputational risks.
The Mobilewalla settlement underscores the need for robust privacy programs and compliance with data protection regulations to avoid costly penalties and maintain consumer trust in a world of increasingly complex data practices.
If you would like to read more about this case and others, visit our Case Studies Library.
(Image Credit: iStock Photo)
This article is for information purposes only. It is not intended to be and should not be relied on as legal advice for any particular matter.