Public records acquired by the Electronic Frontier Foundation (EFF) from state and local US law enforcement agencies reveal Fog Data Science is enabling surveillance of hundreds of millions of people by collecting billions of data points captured from common phone apps and then selling it illegally – bypassing the need for buyers to obtain a search warrant. The company collects and tracks geolocation data and can trace activity over months and years. This harkens back to a 2015 class action that occurred when Carrier IQ, a now defunct company, was found tracking keystrokes belonging to millions of people, then selling the data to third parties in violation of multiple laws.

TrustArc’s third annual Global Privacy Benchmark Report found that as the list of global laws has grown and risks become more prevalent, demands on companies have increased substantially. Now 90% of medium and large enterprises have privacy offices, but the reporting line still varies significantly, with 18% reporting to a CPO, 16% respectively to a CISO or CFO, 13% to a CTO, and 10% to a CIO.