Ad Tech Privacy Watch

GPC Noncompliance at Industrial Scale and Pixel Litigation Wave

GPC Noncompliance at Industrial Scale and Pixel Litigation Wave

Key Questions

Which major companies are failing to comply with GPC signals according to the WebXray audit?

The audit reports Google at 87%, Meta at 69%, and Microsoft at 50% noncompliance with Global Privacy Control signals. DataGrail's report further indicates that 63% of websites overall ignore opt-out signals. This highlights widespread industrial-scale issues in honoring user privacy preferences.

What recent class actions involve pixel tracking and data sharing with Meta or TikTok?

Redfin faces a class action for sharing housing search data with Meta and TikTok. European Wax Center settled a pixel-related case for $5M, while Best Buy is also subject to a class action under Virginia PIPA. Farmers Insurance is facing a California suit for tracking after explicit cookie rejection.

How are courts handling wiretap and privacy claims in website tracking cases?

A wiretap suit against Temu over data sharing survived a motion to dismiss, showing courts are taking such claims seriously. New defense strategies are emerging around complaint language parsing in CCPA private rights of action. Settlements like Kaiser ($46M) and Aspen Dental ($18.5M) underscore the scale of exposure from tracking tools.

What technical developments are impacting cross-site tracking and consent?

The new CHIPS standard affects cross-site tracking capabilities, while FROST SSD timing attacks enable cross-browser fingerprinting. Google removed its cross-device remarketing backstop in June, potentially leaking full signals to Google Ads where consent modes are misconfigured.

What does the Privado AI scan reveal about Google Consent Mode implementations?

The scan found 48% of top sites misconfigure Google Consent Mode, creating gaps that bypass consent requirements. This adds to resources like the new GA4 consent guide from Concentio for technical compliance. Four ways tracking technologies bypass cookie consent are also detailed in recent analyses.

Are phone numbers emerging as a new cross-site tracking identifier?

Phone numbers via carriers are raising concerns as a replacement tracking vector with consent gaps after third-party cookie elimination. Operators are being questioned on readiness for this shift. This follows reports on how anonymous tracking and analytics can still occur without personal data.

What litigation is challenging partnerships like Zillow and Redfin under privacy laws?

Zillow and Redfin's partnership is being challenged in court as a potential data sale under state privacy laws, with the companies defending it as legal. This ties into broader pixel litigation waves and standing rulings. Another pixel class action recently failed certification due to individualized issues.

How effective is Apple's Safari ITP in protecting user data according to recent suits?

A suit claims Apple's Safari ITP does not protect data as advertised, questioning its effectiveness against tracking. Practical guides on Apple ITP and consent stitching are now available amid ongoing privacy litigation reports. This aligns with EU privacy violation reports involving silent cookie storage by Google.

WebXray audit finds Google (87%), Meta (69%), Microsoft (50%) failing GPC. New court rulings on standing and pen register statutes. Redfin class action for sharing housing search data with Meta and TikTok. European Wax Center $5M pixel settlement. DataGrail report: 63% of websites ignore opt-out signals. FROST SSD timing attack enables cross-browser fingerprinting. Best Buy class action under Virginia PIPA. Courts expand CCPA's private right of action. Google silently storing cookies and identifiers without consent or opt-out. New technical standard CHIPS impacts cross-site tracking. A new article details four ways tracking technologies bypass cookie consent. Critical new alert: Privado AI scan shows 48% of top sites misconfigure Google Consent Mode; gaps now leak full signals to Google Ads. Latest: Another pixel class action fails—class cert denied due to individualized issues. New practical guide on CIPA/ECPA exposure highlights the gap between consent banners and actual tracking blocking; Kaiser $46M and Aspen Dental $18.5M settlements underscore risk scale. Farmers Insurance class-action for tracking after explicit cookie rejection adds to wave. Zillow/Redfin partnership challenged as potential data sale under state privacy laws. Apple Safari privacy suit challenges ITP effectiveness. Phone numbers as cross-site identifiers via carriers raises new tracking vector and consent gap.

Sources (11)
Updated Jun 26, 2026
Which major companies are failing to comply with GPC signals according to the WebXray audit? - Ad Tech Privacy Watch | NBot | nbot.ai