Consumer Rights Wiki - User contributions [en]

Instagram

2026-03-22T02:47:38Z

Mr Pollo: /* Products */

{{Incomplete}}
{{ProductCargo
|ArticleType=Service
|Category=Social Media
|Company=Meta
|Description=American social media app focused on photos and short-form video.
|InProduction=Yes
|Logo=Instagram.png
|ProductLine=
|ReleaseYear=2010
|Website=https://www.instagram.com/
}}
'''[[wikipedia:Instagram|Instagram]]''' is a global social-media platform and subsidiary of [[Meta]] since 2012.<ref>{{Cite web |date=9 Apr 2012 |title=Facebook to Acquire Instagram |url=https://about.fb.com/news/2012/04/facebook-to-acquire-instagram/ |url-status=live |access-date=17 Mar 2025 |website=[[Meta]] |archive-url=http://web.archive.org/web/20260209050049/https://about.fb.com/news/2012/04/facebook-to-acquire-instagram/ |archive-date=9 Feb 2026}}</ref> Founded in 2010 by Kevin Systrom and Mike Krieger, Instagram focuses on sharing photos and videos. This content can take the form of a "reel", "post", or a "story".<ref group="notes">Reels: Short videos similar to the format popularized by TikTok. Posts: A collection of images or videos. Stories: A temporary post that allows photos, videos, and text.</ref> Moreover, Instagram has a direct messaging service and a live streaming service built in.

Instagram has been scrutinized for many consumer violations revolving around the extent of its data collection<ref>{{Cite web |last=Cuthberson |first=Anthony |date=18 Mar 2021 |title=Instagram is ‘most invasive app’, new study shows |url=https://www.the-independent.com/tech/instagram-invasive-app-privacy-facebook-b1818453.html |url-status=live |access-date=17 Mar 2025 |website=Independent |archive-url=http://web.archive.org/web/20260130180350/https://www.the-independent.com/tech/instagram-invasive-app-privacy-facebook-b1818453.html |archive-date=30 Jan 2026}}</ref> and the use of said data.

==Consumer-protection profile==

===Privacy===

*On signup, Instagram collects details such as the user's name, email, phone number, and profile information.<ref name=":0">[https://help.instagram.com/155833707900388?utm_source=chatgpt.com Privacy Policy] ([http://web.archive.org/web/20251211065551/https://help.instagram.com/155833707900388?utm_source=chatgpt.com Archived])</ref>
*Through the use of the app, Instagram collects the following:<ref name=":0" />
**Interactions including, likes, comments, posts, and direct messages.
**Location Data.
**Device Information.
**Usage Data.
**Content Data including metadata from photos and videos.
**Information from messages including the people the user interacts with the types of messages the user sends.
*Instagram shares data to 3rd parties including advertisers directly and through Meta.<ref name=":0" />
*Instagram will share data with law enforcement if legally compelled.<ref name=":0" />
*Instagram will analyze messages for the purpose of detecting spam, harassment, or abusive content.
*Instagram uses user data to serve targeted advertisements to the user.

===Transparency===

*The Instagram privacy policy states how most user data is collected and stored.
*Instagram allows users to download a copy of their Data through their front-ends.
*It is unclear how much information is collected from user to user messages.

===Freedom===

*Instagram messages are not end-to-end encrypted.
*Instagram, as part of Meta, has a forced arbitration clause in its terms of service.
*Instagram has the ability to remove content without citing a reason.
*Instagram is granted a license to use, distribute, modify, run, copy, display, and create derivative works of uploaded content.<ref name=":1">[https://help.instagram.com/581066165581870/ Terms of Service] ([http://web.archive.org/web/20260222100652/https://help.instagram.com/581066165581870/ Archived])</ref>

==Consumer-protection incidents==

=== Removal of opt-in end-to-end encryption of messages (March 2026) ===
Meta quietly updated its help pages to announce that messages between users on the platform will no longer be end-to-end encrypted starting May 2026 after pressure from child safety lobby groups. Meta stated that the removal is due to very few users actually using the feature. This is most likely because it required a manual opt-in.<ref>{{Cite web |last=Taylor |first=Josh |date=2026-03-18 |title=Instagram to remove end-to-end encryption for private messages in May |url=https://www.theguardian.com/technology/2026/mar/18/instagram-to-remove-end-to-end-encryption-for-private-messages-in-may |access-date=2026-03-18 |website=The Guardian}}</ref><ref>{{Cite web |last=Lakshmanan |first=Ravie |date=2026-03-13 |title=Meta to Shut Down Instagram End-to-End Encrypted Chat Support Starting May 2026 |url=https://thehackernews.com/2026/03/meta-to-shut-down-instagram-end-to-end.html |access-date=2026-03-18 |website=The Hacker News}}</ref><ref>{{Cite web |last=Schoon |first=Ben |date=2026-03-13 |title=Meta is killing end-to-end encryption for Instagram DMs soon |url=https://9to5google.com/2026/03/13/meta-is-killing-end-to-end-encryption-for-instagram-dms-soon/ |access-date=2026-03-18 |website=9To5Google}}</ref>

===Introduction of maps feature (Aug. 2025)===
On August 6, 2025, Instagram introduced two features in their app; reposts and the map, with the latter being heavily clarified the feature is opt-in.<ref>{{Cite web|url=https://about.instagram.com/blog/announcements/instagram-new-features-connect-friends/|title=New Features to Help You Connect With Friends|work=Instagram|date=2025-08-06|access-date=2025-08-11|archive-url=http://web.archive.org/web/20251212011801/https://about.instagram.com/blog/announcements/instagram-new-features-connect-friends|archive-date=12 Dec 2025|url-status=live}}</ref> Many of its users have voiced concerns with the feature being implemented, as some say their location was enabled without their knowledge.<ref>{{Cite web|url=https://www.abc.net.au/news/2025-08-09/instagram-location-sharing-feature-is-raising-privacy-concerns/105632212|title=Instagram's new location-sharing feature is raising privacy concerns|first1=Sohani|last1=Goonetillake|first2=Lewis|last2=Wiseman|date=2025-08-09|work=ABC News Australia|access-date=2025-08-11|archive-url=https://web.archive.org/web/20250809151515/https://www.abc.net.au/news/2025-08-09/instagram-location-sharing-feature-is-raising-privacy-concerns/105632212|archive-date=2025-08-09|url-status=live}}</ref> Other users have demanded Instagram to remove the feature altogether on the company's posts, citing the creepiness and danger posed to younger users and women.<ref>{{Cite web|url=https://www.instagram.com/reel/DNBlO9_SVey/|title=Music: ON. World: OFF.⁣ #InTheMoment|date=2025-08-06|work=Instagram|archive-url=https://archive.ph/Jh8sm|archive-date=2025-08-08|url-status=live}}</ref> Privacy-focused users have suggested those with Instagram to disable Instagram's location services altogether through the phone's settings.<ref>{{Cite web|url=https://www.reddit.com/r/privacy/comments/1mjqyym/instagram_update_now_shares_your_live_location/|title=Instagram update now shares your live location unless you disable it|author=u/SideHonest9960|date=2025-08-07|work=Reddit|access-date=2025-08-11|archive-url=https://web.archive.org/web/20260222222254/https://old.reddit.com/r/privacy/comments/1mjqyym/instagram_update_now_shares_your_live_location/|archive-date=22 Feb 2026|url-status=live}}</ref>
<gallery>
File:Instagram response maps feature (1).PNG|Statement from Instagram on August 8th clarifying how the maps feature is integrated with existing accounts.
File:Instagram response maps feature (2).PNG
File:Instagram response maps feature (3).PNG
File:Instagram response maps feature (4).PNG
File:Instagram response maps feature (5).PNG
</gallery>

Instagram already had a "photo map" feature in its early years, which was removed in 2016.<ref>2016-09-09, [https://thinkmarketingmagazine.com/instagram-killing-photo-maps-feature/ Instagram killing “photo maps” feature] ([http://web.archive.org/web/20260130202048/https://thinkmarketingmagazine.com/instagram-killing-photo-maps-feature/ Archived])</ref>

===Instagram shows gore and violence videos to select users (Feb. 2025)===
In what Instagram calls an "error", some users were shown videos of graphic death scenes and animal abuse in their Reels feed for about a day.<ref>{{Cite web |last=Milmo |first=Dan |date=2025-02-28 |title=Meta apologises over flood of gore, violence and dead bodies on Instagram |url=https://www.theguardian.com/technology/2025/feb/28/meta-apologises-over-flood-of-gore-violence-and-dead-bodies-on-instagram |archive-url=https://web.archive.org/web/20250301002132/https://www.theguardian.com/technology/2025/feb/28/meta-apologises-over-flood-of-gore-violence-and-dead-bodies-on-instagram |archive-date=2025-03-01 |access-date=2025-03-06 |website=The Guardian}}</ref><ref>{{Cite news |last=Duffy |first=Clare |date=February 27, 2025 |title=Meta apologizes, fixes glitch that caused violent video recommendations on Reels |url=https://edition.cnn.com/2025/02/27/tech/meta-apologizes-glitch-violent-reels |archive-url=http://web.archive.org/web/20251103212649/https://edition.cnn.com/2025/02/27/tech/meta-apologizes-glitch-violent-reels |archive-date=3 Nov 2025 |work=CNN}}</ref>

This also serves as an example for the kind of content Meta staff has to review when flagged and raises questions about the mental health impact watching this type of content all day has on the workers tasked with content moderation.<ref>{{Cite news |last=Llach |first=Laura |date=19 Oct 2023 |title=‘It scars you for life’: Workers sue Meta claiming viewing brutal videos caused psychological trauma |url=https://www.euronews.com/2023/10/19/it-scars-you-for-life-workers-sue-meta-claiming-viewing-brutal-videos-caused-psychological |archive-url=http://web.archive.org/web/20250823162227/https://www.euronews.com/2023/10/19/it-scars-you-for-life-workers-sue-meta-claiming-viewing-brutal-videos-caused-psychological |archive-date=23 Aug 2025 |work=Euro News}}</ref>

===Instagram allows AI to be trained on user data (Mar. 2023)===
In March 2023, Instagram updated its Terms of Service to allow them to use collected data to train artificial intelligence.<ref name=":1" /> This data includes uploaded photos and videos and the creators were not given compensation. This new TOS was mandatory to accept to continue using the platform.

Opt-out was available in regions where this was legally required, but involved a ridiculously complicated process using a variety of [[Dark pattern|dark patterns]] to dissuade users from taking Meta up on the offer. The form included a freeform text box where the user had to explain their reasons for opting out and suggested that all requests would be manually reviewed and reserved the right to reject the user's wishes.<ref>{{Cite web |last=Grinkevičius |first=Paulius |date=2024-05-28 |title=Meta uses your data to train AI, and it doesn't want you to opt out |url=https://cybernews.com/tech/meta-trains-ai-on-your-data/ |access-date=2025-03-09 |website=cybernews |archive-url=http://web.archive.org/web/20251007023331/https://cybernews.com/tech/meta-trains-ai-on-your-data/ |archive-date=7 Oct 2025}}</ref>

===New iOS Camera Activity Indicator shows camera activity at unexpected moments (2020–2022)===
Some users reported their camera being accessed while they were not using a feature of the app that ordinarily involves taking pictures or videos. This was revealed by a new indicator in iOS 14 and the same thing was repeated when Android 12 introduced a similar indicator.<ref>{{Cite web |title=Why does Instagram use my camera whenever i exit the app? |url=https://www.reddit.com/r/AndroidQuestions/comments/s85mv2/why_does_instagram_use_my_camera_whenever_i_exit/ |url-status=live |access-date=2025-03-19 |website=[[Reddit]] |archive-url=http://web.archive.org/web/20220120004950/https://old.reddit.com/r/AndroidQuestions/comments/s85mv2/why_does_instagram_use_my_camera_whenever_i_exit/ |archive-date=20 Jan 2022}}</ref><ref>{{Cite web |date=30 Oct 2021 |title=Why is Instagram accessing my camera at unexpected moments ? (The new privacy feature from Android 12 shows a red dot at the top right when an app is accessing sensitive hardware) |url=https://www.reddit.com/r/Instagram/comments/qiyofe/why_is_instagram_accessing_my_camera_at/ |url-status=live |archive-url=http://web.archive.org/web/20211030102434/https://old.reddit.com/r/Instagram/comments/qiyofe/why_is_instagram_accessing_my_camera_at/ |archive-date=30 Oct 2021 |access-date=2025-03-19 |website=[[Reddit]]}}</ref><ref>{{Cite web |date=15 Feb 2022 |title=Instagram weirdly accessing camera? (more in first comment) |url=https://www.reddit.com/r/Instagram/comments/ssqeyi/instagram_weirdly_accessing_camera_more_in_first/ |url-status=live |archive-url=http://web.archive.org/web/20220215015408/https://old.reddit.com/r/Instagram/comments/ssqeyi/instagram_weirdly_accessing_camera_more_in_first/ |archive-date=15 Feb 2022 |access-date=2025-03-19 |website=[[Reddit]]}}</ref>

In a separate incident '''[I think November 2022]''', users reported suddenly seeing their camera feed behind the Instagram interface when scrolling their feed or interacting with posts '''[SOURCES NEEDED – very difficult to find the reports on this].'''

Instagram claimed that nothing was recorded in these instances. Their responses never addressed concerns that the camera feed might be used for things like analysing the face for emotional reaction to ads, recording location information or similar.<ref>{{Cite web |last=Becker |first=Leo |date=2020-07-27 |title=Unerwünschter iPhone-Kamerazugriff: Instagram verweist auf Bug |url=https://www.heise.de/news/Unerwuenschter-iPhone-Kamerazugriff-Instagram-verweist-auf-Bug-4855850.html |access-date=2025-03-18 |website=Heise Online [German] |archive-url=http://web.archive.org/web/20251104105813/https://www.heise.de/news/Unerwuenschter-iPhone-Kamerazugriff-Instagram-verweist-auf-Bug-4855850.html |archive-date=4 Nov 2025}}</ref>

===Instagram uses personal data for advertisements without proper consent (Nov. 2020)===

===Instagram data breach (May 2019)===
In May 2019 Instagram suffered a big data breach which exposed sensitive information of almost 50 milion influencers and brands such as phone numbers and email adresses.<ref name=":2">{{Cite news |last=Whittaker |first=Zack |date=May 20, 2019 |title=Millions of Instagram influencers had their contact data scraped and exposed |url=https://techcrunch.com/2019/05/20/instagram-influencer-celebrity-accounts-scraped/ |archive-url=http://web.archive.org/web/20260202173310/https://techcrunch.com/2019/05/20/instagram-influencer-celebrity-accounts-scraped/ |archive-date=2 Feb 2026}}</ref><ref>{{Cite news |date=May 23, 2019 |title=Instagram data breach! 49 million users’ sensitive data exposed online |url=https://cisomag.com/instagram-data-breach-49-million-users-sensitive-data-exposed-online/ |archive-url=http://web.archive.org/web/20251019102516/https://cisomag.com/instagram-data-breach-49-million-users-sensitive-data-exposed-online/ |archive-date=19 Oct 2025}}</ref>. It was later stated that no more than 350.000 accounts were affected and least some of the personal information was set to public by the affected accounts

The database was stored on an Amazon server and wasn't protected by a password<ref>{{Cite news |date=May 21, 2019 |title=Instagram: Facebook probes breach of millions of influencer accounts |url=https://www.bbc.com/news/world-asia-india-48347592 |archive-url=http://web.archive.org/web/20260202052918/https://www.bbc.com/news/world-asia-india-48347592 |archive-date=2 Feb 2026 |work=BBC}}</ref>

The database was open for at least 72 hours, although a researcher verified that it was first accesed on May 14th<ref name=":2" />

===Controversy regarding the data privacy of minors (Mar. 2019)===
Since at least early 2019 until mid-2023 Meta has taken minimal action regarding closing accounts of children under 13, after requests sent from their parents and friends. Meta was actively collecting personal information of these children without their parents consent. This led to a lawsuit against the company in which it was stated that Meta violated the Children’s Online Privacy Protection Rule (COPPA).<ref>{{Cite news |last=Rothenberg |first=Eva |date=26 Nov 2023 |title=Meta collected children’s data from Instagram accounts, unsealed court document alleges |url=https://edition.cnn.com/2023/11/26/business/meta-collecting-data-children-facebook |archive-url=http://web.archive.org/web/20251124234550/https://edition.cnn.com/2023/11/26/business/meta-collecting-data-children-facebook |archive-date=24 Nov 2025 |work=CNN}}</ref>

Concerns were also present regarding exposing children to potential harmful content from a young age, which could impact their well-being

===Meta shares personal data from millions without consent. (Mar. 2018)===

==Other incidents==
===API restrictions (June 2016)===
Starting with June 2016, Instagram imposed restrictions on their API that made it difficult for third-party apps, web front ends and search engines to work.<ref>[https://zeldman.com/2016/06/04/instagram-third-party-developers-drop-dead/ Instagram to third-party developers: drop dead] ([http://web.archive.org/web/20260130093146/https://zeldman.com/2016/06/04/instagram-third-party-developers-drop-dead/ Archived])</ref><ref>[https://www.macrumors.com/2016/06/02/instagram-third-party-apps-websites-dead/ Third-Party Instagram Apps and Websites Cease to Work - Mac Rumors] ([http://web.archive.org/web/20251211004701/https://www.macrumors.com/2016/06/02/instagram-third-party-apps-websites-dead/ Archived])</ref> Third-party tools like Hashtag Pirate had searching capabilities well beyond Instagram's built-in search tool, such as filtering by multiple tags and limiting by media type (photo or video).<ref>[https://web.archive.org/web/20171112094946/http://hashtagpirate.com/news/instagram-blocked-access/ Instagram blocked access] - Hashtag Pirate, June 3, 2016</ref>

It is similar to [[Reddit#API_paywall,_June_2023|what Reddit did in 2023]], but 7 years earlier.

==Products==
*Boomerang (2015-2022): A standalone app that looped videos.<ref name="IG Verge">{{Cite web|url=https://www.theverge.com/2022/3/7/22965754/instagram-boomerang-hyperlapse-app-store-google-play|title=Instagram’s standalone Boomerang and Hyperlapse apps are gone from the App Store and Google Play|first=Jay|last=Peters|date=2022-03-07|work=The Verge|access-date=2026-01-23 |archive-url=http://web.archive.org/web/20251207133053/https://www.theverge.com/2022/3/7/22965754/instagram-boomerang-hyperlapse-app-store-google-play |archive-date=7 Dec 2025}}</ref>
*Instagram TV (IGTV) (2018-2022): An app for long-form vertical videos.<ref name="IG Verge2">{{Cite web|url=https://www.theverge.com/2022/2/28/22955646/instagram-shuts-down-separate-igtv-app-video-changes-reels-ads|title=Instagram says it’ll stop supporting the IGTV app|first=Mitchell|last=Clark|date=2022-02-28|work=The Verge|access-date=2026-01-23 |archive-url=http://web.archive.org/web/20260129015219/https://www.theverge.com/2022/2/28/22955646/instagram-shuts-down-separate-igtv-app-video-changes-reels-ads |archive-date=29 Jan 2026}}</ref>
*Instagram for TV (2025-): An Amazon Fire TV app for watching Reels.<ref>{{Cite web|url= https://www.aboutamazon.com/news/devices/fire-tv-amazon-instagram-for-tv|date=2025-12-16|title=Instagram for TV launching first on Fire TV devices|work=AmazonNews|access-date=2026-03-21}}</ref>

==See also==
*[[Facebook]]
*[[Snapchat]]
*[[TikTok]]

==Notes==
<references group="notes" />

==References==
<references />
[[Category:Instagram]]
[[Category:Articles in need of additional work]]

Talk:Shell

2026-03-22T02:43:55Z

Mr Pollo: /* Relating to Human Rights issue */ Reply

==Relating to Human Rights issue==

I checked in the logs that you deleted the Nigerian incident, and while I get that it is more leaning towards a Human rights issue and doesn't closely fit into the aspect of consumer rights wiki, I don't agree that it should be out-right removed as (in my opinion) still resemble some aspects of consumers being impacted (like false advertising campaign towards climate change, however the company/gov merely responded with killings, tortures, removal/burning of homes). I feel it should still be mentioned maybe as a side note or hinted at, or even maybe in the future we can re-add later on down the line? @[[User:Mr Pollo|Mr Pollo]] [[User:SquidthePlummer|SquidthePlummer]] ([[User talk:SquidthePlummer|talk]]) 22:09, 18 March 2026 (UTC)

:Hello! I have brought this up with the other staff members for consideration. They or I will reply when a consensus is made. [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 02:43, 22 March 2026 (UTC)

BMW introduces proprietary screw

2026-03-18T14:27:39Z

Mr Pollo: Redirected page to BMW Proprietary Screws

#redirect [[BMW Proprietary Screws]]

BMW Proprietary Screws

2026-03-18T14:26:51Z

Mr Pollo: merged from BMW introduces proprietary screw by User:Potatoman32

{{Stub}}
{{IncidentCargo
|Company=BMW
|StartDate=2026-02-05
|Status=Active
|Type=Anti-consumer Behavior, Repairability
|Description=BMW has developed proprietary screws and is currently in the process of patenting these screws for its vehicles.
}}
[[File:BMW Proprietary Screw.png|thumb|right|alt=|Diagram of screw patent]]
In late 2025, [[BMW]] had its [https://patentscope.wipo.int/search/en/detail.jsf?docId=DE469242297 patent published] for a new kind of screw that removed the possibility to the end user to tighten or loosen it.
==Background==
BMW has patented a new type of fastener in the shape of the BMW roundel logo. [https://www.bmwblog.com/2025/12/30/bmw-roundel-screw-patent/ BMW Designs Roundel-Shaped Screw Heads That Could Require Special Tools]

==[Incident]==
BMW has filed a patent with [https://patentscope.wipo.int/search/en/detail.jsf?docId=DE469242297 WIPO] for a fastener concept that is engineered to make basic access for consumers next to impossible. The [https://www.bmwblog.com/2025/12/30/bmw-roundel-screw-patent/ design] uses a circular head split into four quadrants that mirror the BMW emblem's layout. The patent illustrates four different head types, including a socket, flat, and rounded variations, all sharing the same logo inspired geometry. The design relies on an unusual engagement with the tool. Two quadrants are recessed, while the remaining sections are either flat or raised. This design makes it impossible for the average consumer to have the ability to service their vehicles. According to the patent, the fasteners are intended for structural and semi-structural applications, such as seat mountings and on areas where the interior connects to the body of the vehicle. BMW's stated goal is to prevent tightening or loosening with common tools by unauthorized individuals.

The incident was first reported on by CarBuzz on December 17th 2025<ref>{{Cite web |last=Williams |first=Evan |date=2025-12-17 |title=BMW Patents Proprietary Screws That Only Dealerships Can Remove |url=https://carbuzz.com/bmw-roundel-logo-screw-patent/ |url-status=live |archive-url=http://web.archive.org/web/20260317153952/https://carbuzz.com/bmw-roundel-logo-screw-patent/ |archive-date=2026-03-17 |access-date=2026-03-17 |website=CarBuzz}}</ref> . Two days later the rest of the media followed suit.

===[Company]'s response===
{{Ph-I-ComR}}

==Lawsuit==
{{Ph-I-L}}

==Consumer response==
On January 17, 2026, the YouTube channel BuildyBryce uploaded a short titled, [https://youtube.com/shorts/huR9Uo2XBK8?si=NgMWxKPTQ8sWPqiw Hacking BMW's patented bolt with 3D printing] in which the creator uses the patent to make a 3D printed model of both the patented fastener, and a tool that is compatible with the patented fastener.

A writer on an iFixit blog post noted, "At first glance, it’s almost cute: a screw head shaped exactly like the BMW logo. But the novelty wears off the moment you consider the physics. [...] Broken bits, stripped screws, and more time spent on what would otherwise be a simple task."<ref>{{Cite web |last=Mokhtari |first=Shahram |date=2026-02-04 |title=BMW’s Newest “Innovation” is a Logo-Shaped Middle Finger to Right to Repair |url=https://www.ifixit.com/News/115528/bmws-newest-innovation-is-a-logo-shaped-middle-finger-to-right-to-repair |url-status=live |archive-url=http://web.archive.org/web/20260218131847/https://www.ifixit.com/News/115528/bmws-newest-innovation-is-a-logo-shaped-middle-finger-to-right-to-repair |archive-date=2026-02-18 |access-date=2026-03-17 |website=iFixit}}</ref>

==References==
{{Reflist}}

# [https://www.bmwblog.com/2025/12/30/bmw-roundel-screw-patent/ BMW Designs Roundel-Shaped Screw Heads That Could Require Special Tools]
# '''[https://patentscope.wipo.int/search/en/detail.jsf?docId=DE469242297 DE102024115950 - Screw]'''
# [https://youtube.com/shorts/huR9Uo2XBK8?si=nVi87-E4UOLMxosM Hacking BMW's patented bolt with 3D printing]
[[Category:BMW]]
[[Category:2025 incidents]]

User talk:Mr Pollo

2026-03-18T14:20:56Z

Mr Pollo: /* Merge of https://consumerrights.wiki/w/BMW introduces proprietary screw and https://consumerrights.wiki/w/BMW Proprietary Screws */ Reply

==HP: Systemic DRM and Firmware Lockouts==

I’m still working on this, so is there a way to publish a page as a draft before fully publishing or saving something I’m not too familiar with MediaWiki. I’ve made some more tweaks and I’m still writing a bit more, so it’s not AI. It’s just a collection of different URLs and things I saw around HP mostly because I used to have an HP printer… but there’s a systemic issue outside of Brothers, which I think Brothers have changed from some things I’ve researched. They’ve all started doing ridiculous things like DRM lockouts or subscription services for a stupid printer. [[User:Hirov.xyz|Hirov.xyz]] ([[User talk:Hirov.xyz|talk]]) 13:57, 29 August 2025 (UTC)

:I appreciate you reaching out to me regarding your article! I apologize for falsely flagging your article as AI. If you need more time to get a future article up to wiki standards, you can move the page to your sandbox ( just be sure to select the "User" option from the drop-down bar; and type "Hirov.xyz/sandbox" in the box to the right of it).
:What I would recommend are two things:
:*Use the [[Template:Cite web|Cite web]] template for your references
:**You would insert the <nowiki><ref>{{Cite web|}}</ref></nowiki> in source editor after a sentence or word that relates to the contents of the reference
:*Follow the [[Template:IncidentPreload|Incident article format]]
:**Use [https://consumerrights.wiki/Special:FormEdit/Incident/HP:_Systemic_DRM_and_Firmware_Lockouts this form page] to create the Cargo template
:I have put an "under development" template on the article for now, so you do not need to move it to your sandbox. In the meantime, I would suggest focusing on formatting the article and references with the resources I linked above. If you need more resources on wiki editing, [[Consumer_Rights_Wiki:Wiki_policy_index|this index]] is a good start! [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 23:38, 29 August 2025 (UTC)
::Awesome thanks for replying back here. I just jumped right into it. I’ll read through all those articles and ping you to see once I feel like this is in good shape. Based on all the information you gave me have a good Labor Day Weekend. [[User:Hirov.xyz|Hirov.xyz]] ([[User talk:Hirov.xyz|talk]]) 01:31, 30 August 2025 (UTC)
:::Thanks, you as well! [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 15:38, 31 August 2025 (UTC)
::::As I read further, I came across “HP, Inc.” It reminded me of some thoughts I already have that I can expand upon. Instead of creating a separate page, I thought it might be better to add these ideas to the existing page. I noticed that the page mentions printers but doesn’t have a link to the tag for printers. Maybe that’s why I missed it. I’ll probably review more of the wiki and look for other similar topics. I think this might help me organize the information better than just adding more pages. Some things might already exist and just need to be expanded upon. [[User:Hirov.xyz|Hirov.xyz]] ([[User talk:Hirov.xyz|talk]]) 02:44, 2 September 2025 (UTC)
:::::If what you have currently can all fit on the HP company article rather than for a full incident, then I would suggest editing the company article first. If you find more credibly sourced info about the HP printer DRM that can fill out all the required sections in the IncidentPreload, then an incident article will be good. [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 12:26, 2 September 2025 (UTC)

==Confused about some of your actions==

Hello Mr Pollo.

from your recent commits, you seem to be deleting self-titled categories. From my understanding of [[Consumer Rights Wiki:Categorization]], this is incorrect.

From what i've read, all pages should be in a category which is self-titled. Or am i misunderstanding something ?

Please provide clarification. Thank you ! [[User:Plankton|Plankton]] ([[User talk:Plankton|talk]]) 04:05, 24 October 2025 (UTC)

:Not sure exactly what edits you're talking about, but if it is where the actual original page for the category has been deleted, there's no reason for it to exist. [[User:AnotherConsumerRightsPerson|AnotherConsumerRightsPerson]] ([[User talk:AnotherConsumerRightsPerson|talk]]) 09:07, 24 October 2025 (UTC)
::No i'm talking about pages which had a category of the same names with further tags in that category, and where Mr Pollo removed said category and put the tags straight onto the page. [[User:Plankton|Plankton]] ([[User talk:Plankton|talk]]) 13:03, 24 October 2025 (UTC)
:::Hello! As the Common terms category is not mentioned in the Categorization page, I figured those articles only needed the common terms category. Although, if you would like to make a self category for every article in [[:Category:Common terms|Common terms]] and add that category to all the terms category pages, we would need to ask higher staff. @[[User:Keith|Keith]] thoughts? [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 20:20, 24 October 2025 (UTC)
::::I'm not deeply involved with the categorisation system, and am happy for you guys to adopt whichever solution you think most sensible. LMK if there's anything you need my perms for, or anything like that! [[User:Keith|Keith]] ([[User talk:Keith|talk]]) 19:15, 29 October 2025 (UTC)
:::::I feel like we should keep the Common terms category the way it is, as users are more familiar with adding that category to articles compared to the pagename category and then adding the common terms category to that. If necessary though, the category for individual common terms can be made if there are other articles that fit the term definition. [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 13:34, 30 October 2025 (UTC)
::::::alright then. thank you all for the clarification [[User:Plankton|Plankton]] ([[User talk:Plankton|talk]]) 01:18, 31 October 2025 (UTC)
:::::::Of course! [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 13:12, 1 November 2025 (UTC)

==Optimum==

in the summary when creating the [[Optimum|page]] you mentioned incidents will be added but that was in April. will it be expanded upon? [[User:SinexTitan|SinexTitan]] ([[User talk:SinexTitan|talk]]) 22:13, 18 January 2026 (UTC)

:Hello! Yes I’ve been meaning to continue that article for some time now. I added my sources to the [[:File:Optimum.svg|Optimum logo file]] for safe keeping if you would like to see. Feel free to utilize those sources if you’d like, though I’ve been busy. [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 16:27, 20 January 2026 (UTC)
::no worries, I'll check them out and see what I can do [[User:SinexTitan|SinexTitan]] ([[User talk:SinexTitan|talk]]) 17:57, 20 January 2026 (UTC)

==Merge of https://consumerrights.wiki/w/BMW_introduces_proprietary_screw and https://consumerrights.wiki/w/BMW_Proprietary_Screws<nowiki/>==

Hey Pollo,

I've seen that you've started the merge process. I agree that I didn't look around the wiki enough on this matter. Tho IMO [[BMW introduces proprietary screw|the page I made]] is much more full of information than [[BMW Proprietary Screws|the one you started]]. Please use most of the stuff I wrote. I spent 1-2 hours looking around for info. Please value my time spent.

Thanks,

potatoman32 [[User:Potatoman32|Potatoman32]] ([[User talk:Potatoman32|talk]]) 22:23, 17 March 2026 (UTC)

:Hello! Thank you for writing to me about this, I will utilize your article contents and sources in the merge. [[User:Mr Pollo|Mr Pollo]] ([[User talk:Mr Pollo|talk]]) 14:20, 18 March 2026 (UTC)

Tapo P115 firmware update breaks Home Assistant integration

2026-03-18T14:18:23Z

Mr Pollo:

{{OngoingEvent}}
{{IncidentCargo
|Company=Tapo, TP-Link
|StartDate=2025-11
|Status=Active
|ProductLine=Smart plug
|Product=P115
|ArticleType=Product
|Type=Regression caused by a firmware update
|Description=Updating the device's firmware to version 1.4.0 introduces regressions that break Home Assistant integrations.
}}

A firmware update for the Tapo P115 caused functionality regressions in home automation. Previously working reliably with Home Assistant, the device now works intermittently and appears to require either an active internet connection or the use of the Tapo app.

==Background==

The Tapo P115 Smart Plug has been on the market for at least two years and was previously compatible with Home Assistant without requiring the Tapo app or an active internet connection. Earlier firmware updates did not introduce any functionality issues, and the device reliably performed its intended home automation tasks.

==Firmware update causing regressions in Home Assistant==

Between October and November 2025, a firmware update (reporting an October date) caused the Tapo P115 to work intermittently with Home Assistant. Users began reporting problems within less than a month of the update <ref>https://github.com/home-assistant/core/issues/156522</ref>, noting that the plug now often requires either an active internet connection or the Tapo app to function. The company has not publicly responded to these reports. Attempts to restore normal functionality are discussed by the community in sources such as Home Assistant's GitHub page <ref>https://github.com/home-assistant/core/issues/160406</ref> and Reddit <ref>https://www.reddit.com/r/homeassistant/comments/1ovumxn/tapo_p110_firmware_140_kills_home_assistant/</ref>. The issue remains unresolved.

==Consumer response==

Community members shared temporary workarounds and troubleshooting steps (enabling "Compatibility with third-party products" via Tapo app), however a permanent resolution from the company has not been provided. Other affected devices such as the TP15 can be connected to a Matter hub without relying on the TP-Link integrarion.

==References==

<references />

Tapo P115 firmware update breaks Home Assistant integration

2026-03-18T14:17:08Z

Mr Pollo: I was affected by this as well, and even more devices like cameras have this issue. Adding workaround

{{OngoingEvent}}
{{IncidentCargo
|Company=Tapo, TP-Link
|StartDate=2025-11
|Status=Active
|ProductLine=Smart plug
|Product=P115
|ArticleType=Product
|Type=Regression caused by a firmware update
|Description=Updating the device's firmware to version 1.4.0 introduces regressions that break Home Assistant integrations.
}}

A firmware update for the Tapo P115 caused functionality regressions in home automation. Previously working reliably with Home Assistant, the device now works intermittently and appears to require either an active internet connection or the use of the Tapo app.

==Background==

The Tapo P115 Smart Plug has been on the market for at least two years and was previously compatible with Home Assistant without requiring the Tapo app or an active internet connection. Earlier firmware updates did not introduce any functionality issues, and the device reliably performed its intended home automation tasks.

==Firmware update causing regressions in Home Assistant==

Between October and November 2025, a firmware update (reporting an October date) caused the Tapo P115 to work intermittently with Home Assistant. Users began reporting problems within less than a month of the update <ref>https://github.com/home-assistant/core/issues/156522</ref>, noting that the plug now often requires either an active internet connection or the Tapo app to function. The company has not publicly responded to these reports. Attempts to restore normal functionality are discussed by the community in sources such as Home Assistant's GitHub page <ref>https://github.com/home-assistant/core/issues/160406</ref> and Reddit <ref>https://www.reddit.com/r/homeassistant/comments/1ovumxn/tapo_p110_firmware_140_kills_home_assistant/</ref>. The issue remains unresolved.

==Consumer response==

Community members shared temporary workarounds and troubleshooting steps, however a permanent resolution from the company has not been provided. Other affected devices such as the TP15 can be connected to a Matter hub without relying on the TP-Link integrarion.

==References==

<references />

DJI Robot Vacuum Hack

2026-03-17T22:03:59Z

Mr Pollo:

{{stub}}
{{IncidentCargo
|Company=DJI
|StartDate=2026-02-22
|EndDate=2026-02-22
|Status=Resolved
|ProductLine=DJI
|Product=DJI Romo
|ArticleType=Product
|Description=DJI vacuum cleaners get accidentally hacked by guy using Claude Code.
}}
{{Ph-I-Int}}
==Background==
{{Ph-I-B}}

==[Incident]==
{{Ph-I-I}}
In 2025, Sammy Azdoufal created an app to control his new DJI robot vacuum. As a result of the device utilizing one API key, he had access to 7 thousand of the same vacuum.<ref name="Verge">{{Cite web|url=https://www.theverge.com/tech/879088/dji-romo-hack-vulnerability-remote-control-camera-access-mqtt|title=The DJI Romo robovac had security so poor, this man remotely accessed thousands of them|first=Sean|last=Hollister|date=2026-02-14|work=The Verge}}</ref>

===[Company]'s response===
{{Ph-I-ComR}}
After this vulnerability was told to DJI by Sammy and The Verge, remote access to the robot was disabled with that key.<ref name="Verge" />

==Lawsuit==
{{Ph-I-L}}

==Consumer response==
{{Ph-I-ConR}}

==References==
{{reflist}}
[[Category:DJI]]

DJI Robot Vacuum Hack

2026-03-17T22:03:34Z

Mr Pollo:

{{IncidentCargo
|Company=DJI
|StartDate=2026-02-22
|EndDate=2026-02-22
|Status=Resolved
|ProductLine=DJI
|Product=DJI Romo
|ArticleType=Product
|Description=DJI vacuum cleaners get accidentally hacked by guy using Claude Code.
}}
{{Ph-I-Int}}
==Background==
{{Ph-I-B}}

==[Incident]==
{{Ph-I-I}}
In 2025, Sammy Azdoufal created an app to control his new DJI robot vacuum. As a result of the device utilizing one API key, he had access to 7 thousand of the same vacuum.<ref name="Verge">{{Cite web|url=https://www.theverge.com/tech/879088/dji-romo-hack-vulnerability-remote-control-camera-access-mqtt|title=The DJI Romo robovac had security so poor, this man remotely accessed thousands of them|first=Sean|last=Hollister|date=2026-02-14|work=The Verge}}</ref>

===[Company]'s response===
{{Ph-I-ComR}}
After this vulnerability was told to DJI by Sammy and The Verge, remote access to the robot was disabled with that key.<ref name="Verge" />

==Lawsuit==
{{Ph-I-L}}

==Consumer response==
{{Ph-I-ConR}}

==References==
{{reflist}}{{Ph-I-C}}

TDK AIsight

2026-03-17T21:41:25Z

Mr Pollo:

{{ProductCargo
|Company=TDK, AIsight
|ReleaseYear=2025
|InProduction=No
|ArticleType=Product
|Category=AI, wearable
|Logo=Logo-TDK-AIsight.png
|Website=https://www.aisight.tdk.com/
|Description=TDK AIsight is a technology platform that enables context-aware vision, memory, and low-power on-device AI for smart glasses.
}}
'''TDK AIsight''' is a core technology platform that enables context-aware vision, memory, and low-power on-device AI for smart glasses.<ref>{{Cite web |date=2026-01-06 |title=TDK establishes TDK AIsight and announces new ultra-low power DSP platform for AI Glasses |url=https://www.tdk.com/en/news_center/press/20260106_01.html |url-status=live |access-date=2026-03-17 |website=TDK AIsight News Center}}</ref> It is a systems‑solution under TDK focused on AI glasses and “physical AI,” combining custom DSPs, cameras, sensors, and '''eye‑intent''' algorithms.<ref>{{Cite web |date=2026-02-27 |title=Physical AI Augments Human Perception, Transforming Smart Glasses into Action Partners |url=https://www.tdk.com/en/featured_stories/entry_087-AI-glasses-TDK-AIsight.html |url-status=live |access-date=2026-03-17 |website=TDK Featured Stories}}</ref> The core chip is the SED0112, a tiny 4.6 mm square DSP with an integrated CNN engine optimized for eye‑intent/eye‑tracking and low‑power vision processing.<ref>{{Cite news |date=2026-01-06 |title=TDK establishes TDK AIsight and announces new ultra-low power DSP platform for AI Glasses |url=https://www.prnewswire.com/news-releases/tdk-establishes-tdk-aisight-and-announces-new-ultra-low-power-dsp-platform-for-ai-glasses-302651387.html |url-status=live |access-date=2026-03-17 |work=PR Newswire}}</ref> The platform is meant to anchor reference designs for AI glasses, AR/social‑media glasses, and industrial eyewear by tying together IMUs, MEMS mics, haptics, and TDK’s full‑color laser display modules.<ref>{{Cite news |last=Flaherty |first=Nick |date=2026-01-08 |title=TDK spins out AI processor for smart glasses |url=https://www.eenewseurope.com/en/tdk-spins-out-ai-processor-for-smart-glasses/ |url-status=live |access-date=2026-03-17 |work=EE News Europe}}</ref>

==Consumer-impact summary==
'''Eye-intent''' turns highly sensitive gaze data into a powerful surveillance and profiling signal, with privacy, consent, and discrimination risks.<ref>{{Cite web |last=Schneiderman |first=Jason |last2=Sakya Joshee |first2=Bipasana |last3=Cronin |first3=Irena |date=2024-07-16 |title=The Intricacies of Gaze Tracking: Balancing Personalization and Privacy |url=https://perkinscoie.com/insights/blog/intricacies-gaze-tracking-balancing-personalization-and-privacy |url-status=live |access-date=2026-03-17 |website=Perkins Coie}}</ref><ref>{{Cite web |last=Alsakar |first=Noora |last2=Alotaibi |first2=Norah |last3=Khamis |first3=Mohamed |last4=Stumpf |first4=Simone |date=2025-08-23 |title=Assessing and Mitigating the Privacy Implications of Eye Tracking on Handheld Mobile Devices |url=https://dl.acm.org/doi/10.1145/3746452 |url-status=live |access-date=2026-03-17 |website=ACM Digital Library}}</ref><ref name=":0">{{Cite journal |last=Koch |first=Richard |date=2023-01-06 |title=What are You Looking At? Emerging Privacy Concerns With Eye Tracking in Virtual Reality |url=https://scholar.law.colorado.edu/cgi/viewcontent.cgi?article=1024&context=ctlj |journal=Colorado Technology law Journal |volume=21 |issue=1}}</ref>

* Eye tracking can reveal what you look at, for how long, and in what sequence, which correlates with attention, preferences, and sometimes emotional state.<ref name=":0" />
* High‑resolution eye trackers often capture iris images and facial features, so they double as biometric identifiers and can be used to spoof or attack iris‑based authentication.<ref>{{Cite web |last=Hosfelt |first=Diane |last2=Shadowen |first2=Nicole |date=2020-07-20 |title=Privacy Implications of Eye Tracking in Mixed Reality |url=https://arxiv.org/abs/2007.10235 |url-status=live |access-date=2026-03-17 |website=Arxiv}}</ref>
* From gaze patterns, models can infer demographics, cognitive load, personality traits, health status, political leanings, or sexual orientation, even if users never explicitly disclose those attributes.<ref>{{Cite web |last=Abdrabou |first=Yasmeen |last2=Ozdel |first2=Suleyman |last3=Maquiling |first3=Virmarie |last4=Bozkir |first4=Efe |last5=Kasneci |first5=Enkelejda |date=2025-05-29 |title=From Gaze to Data: Privacy and Societal Challenges of Using Eye-tracking Data to Inform GenAI Models |url=https://www.edu.sot.tum.de/fileadmin/w00bed/hctl/Paper_PDFs/From_Gaze_to_Data__Ethical_and_Privacy_Risks_of_Using_Eye_tracking_Data_to_Inform_GenAI_Models.pdf |url-status=live |access-date=2026-03-17 |website=TUM School of Social Sciences and Technology Department of Educational Sciences}}</ref>

==See also==

[[Meta]] hit with a class action lawsuit over smart glasses' privacy claims [https://www.engadget.com/social-media/meta-hit-with-a-class-action-lawsuit-over-smart-glasses-privacy-claims-182846817.html]

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

BMW introduces proprietary screw

2026-03-17T21:40:18Z

Mr Pollo:

{{MergeRequest|duplicate|[[BMW Proprietary Screws]]}}
{{ProductCargo
|Company=BMW
|ReleaseYear=2025
|InProduction=Yes
|ArticleType=Product
|Category=Hardware, tools
|Logo=BMW Proprietary Screw.png
|Website=bmw.com
|Description=BMW has submitted a patent for a screw that has a proprietary head which can only be tightened and loosened using their head
}}In late 2025, [[BMW]] had its [https://patentscope.wipo.int/search/en/detail.jsf?docId=DE469242297 patent published] for a new kind of screw that removed the possibility to the end user to tighten or loosen it.{{IncidentCargo
|Company=BMW
|StartDate=2024-06-07
|Status=Pending Resolution
|ArticleType=Product
|Type=Anti-consumer Behaviorv
|Description=BMW has submitted a patent for a screw that has a proprietary head which can only be tightened and loosened using their head
}}
==Background==
{{Ph-I-B}}

==Introduction of proprietary screw==

The incident was first reported on by CarBuzz on December 17th 2025<ref>{{Cite web |last=Williams |first=Evan |date=2025-12-17 |title=BMW Patents Proprietary Screws That Only Dealerships Can Remove |url=https://carbuzz.com/bmw-roundel-logo-screw-patent/ |url-status=live |archive-url=http://web.archive.org/web/20260317153952/https://carbuzz.com/bmw-roundel-logo-screw-patent/ |archive-date=2026-03-17 |access-date=2026-03-17 |website=CarBuzz}}</ref> . Two days later the rest of the media followed suit.
==Consumer response==

A writer on an iFixit blog post noted, "At first glance, it’s almost cute: a screw head shaped exactly like the BMW logo. But the novelty wears off the moment you consider the physics. [...] Broken bits, stripped screws, and more time spent on what would otherwise be a simple task."<ref>{{Cite web |last=Mokhtari |first=Shahram |date=2026-02-04 |title=BMW’s Newest “Innovation” is a Logo-Shaped Middle Finger to Right to Repair |url=https://www.ifixit.com/News/115528/bmws-newest-innovation-is-a-logo-shaped-middle-finger-to-right-to-repair |url-status=live |archive-url=http://web.archive.org/web/20260218131847/https://www.ifixit.com/News/115528/bmws-newest-innovation-is-a-logo-shaped-middle-finger-to-right-to-repair |archive-date=2026-02-18 |access-date=2026-03-17 |website=iFixit}}</ref>

==See also==

*[[BMW]]
*[[BMW's heated seat subscription]]
*[[BMW feature lockout scandal]]
*[[BMW's high beam assistant (HBA)]]

==References==
{{reflist}}

{{Ph-I-C}}

DJI Osmo Pocket 3

2026-03-17T21:38:34Z

Mr Pollo:

{{StubNotice}}
{{ProductCargo
|Company = DJI
|ProductLine = Osmo
|ReleaseYear = 2025
|InProduction = Yes
|ArticleType = Product
|Category = Cameras
|Website = https://www.dji.com/global/osmo-pocket-3
|Description = Osmo Pocket 3 is a camera developed by DJI
}}

The Osmo Pocket 3 is an action camera developed by [[DJI]].

==Incidents==
The Osmo Pocket 3 camera requires the owner to use the DJI Mimo smartphone app. The camera can only be used 5 times without using the app for "activation". After 5 times the usage of the camera is impossible unless the DJI Mimo app is installed and used to "activate" the camera.<ref>"''Osmo Pocket 3 requires activation through the DJI Mimo App''" in section "''Activating the camera''" of the Cameras Beginner's Guide, Retrieved on March 17, 2026. ([https://web.archive.org/save/https://repair.dji.com/help/content?customId=01700009024&spaceId=17&re=US&lang=en&documentType&paperDocType=ARTICLE])</ref>

Furthermore, activating the camera via the DJI Mimo app, requires users to agree to the DJI products terms of use, which include both binding arbitration and a class action waiver. <ref>{{Cite web |date=2024-09-03 |title=DJI products terms of use |url=https://www.dji.com/en/terms |url-status=live |archive-url=https://web.archive.org/web/20250403035327/https://www.dji.com/terms |archive-date=2025-04-03 |access-date=2025-04-19 |website=DJI official website}}</ref>

This is an anti-consumer practice that forces users to install and use proprietary software on their mobile devices (see [[Forced app download]]), potentially giving up their personal data and depriving them of their right to hold DJI accountable in a court of law.

== See also ==

* [[Forced account]]

==References==
<references />
[[Category:Devices requiring account for initial setup]]
[[Category:DJI]]

Consumer Rights Act 2015

2026-03-17T21:38:13Z

Mr Pollo:

The '''Consumer Rights Act 2015''' (CRA 2015) is a [[wikipedia:Consumer Rights Act 2015|UK Act
of Parliament]] that consolidates and modernises consumer protection law in the United Kingdom.
It came into force on 1 October 2015, replacing several earlier pieces of legislation including
the Sale of Goods Act 1979, the Supply of Goods and Services Act 1982, and the Unfair Terms in
Consumer Contracts Regulations 1999.<ref name="legislation-gov">{{Cite web
| url = https://www.legislation.gov.uk/ukpga/2015/15/contents
| title = Consumer Rights Act 2015
| publisher = legislation.gov.uk
| accessdate = 2026-03-17
| archiveurl = https://web.archive.org/web/20260101000000/https://www.legislation.gov.uk/ukpga/2015/15/contents
| archivedate = 2026-01-01
}}</ref> The Act establishes statutory rights for consumers purchasing goods, digital content,
and services, and introduces strengthened protections against unfair contract terms.

== Key provisions ==

=== Part 1: Goods, digital content and services ===

Part 1 establishes that goods sold to consumers must be of satisfactory quality, fit for purpose,
and as described. Where goods do not meet these standards, consumers are entitled to a tiered
system of remedies: a full refund within 30 days of purchase, repair or replacement thereafter,
and a price reduction or final right to reject if repair or replacement fails.<ref name="commons-briefing">{{Cite web
| url = https://researchbriefings.files.parliament.uk/documents/SN06588/SN06588.pdf
| title = Consumer Rights Act 2015 (Briefing Paper SN06588)
| publisher = House of Commons Library
| accessdate = 2026-03-17
| archiveurl = https://web.archive.org/web/20260101000000/https://researchbriefings.files.parliament.uk/documents/SN06588/SN06588.pdf
| archivedate = 2026-01-01
}}</ref>

The same Part covers services, requiring that they be performed with reasonable care and skill,
for a reasonable price if not agreed in advance, and within a reasonable time. Pre-contractual
information provided to a consumer — such as descriptions given at the point of sale — forms
part of the service contract and cannot be unilaterally changed by the trader.<ref name="stevens-bolton">{{Cite web
| url = https://www.stevens-bolton.com/site/insights/briefing-notes/changes-to-consumer-law-in-the-uk-consumer-rights-act-2015
| title = Consumer Rights Act 2015: What has changed?
| publisher = Stevens & Bolton LLP
| accessdate = 2026-03-17
}}</ref>

=== Part 2: Unfair terms ===

Part 2 consolidates the law on unfair terms in consumer contracts, replacing the Unfair Contract
Terms Act 1977 and the Unfair Terms in Consumer Contracts Regulations 1999. A term is unfair if,
contrary to the requirement of good faith, it causes a significant imbalance in the parties'
rights and obligations to the detriment of the consumer. Unfair terms are not binding on the
consumer.<ref name="legislation-gov"/>

Critically, the Act introduces a '''prominence''' requirement: terms that relate to the main
subject matter of the contract or set the price must be both '''transparent''' (expressed in
plain, intelligible language) and '''prominent''' (brought to the consumer's attention in such
a way that an average consumer would be aware of them) in order to be enforceable.<ref name="cma-unfair">{{Cite web
| url = https://assets.publishing.service.gov.uk/media/5a807f4c40f0b62302693daf/Unfair_Terms_Explained.pdf
| title = Unfair Contract Terms Explained (CMA37)
| publisher = Competition and Markets Authority
| date = 2015-07-31
| accessdate = 2026-03-17
| archiveurl = https://web.archive.org/web/20260101000000/https://assets.publishing.service.gov.uk/media/5a807f4c40f0b62302693daf/Unfair_Terms_Explained.pdf
| archivedate = 2026-01-01
}}</ref>

Schedule 2 of the Act contains a non-exhaustive "grey list" of terms that may be regarded as
unfair, including terms that allow the trader to determine the characteristics of the subject
matter after the contract is concluded, and terms that impose disproportionate charges on
consumers who cancel.

=== Section 50: Pre-contractual information ===

Under Section 50, information provided to a consumer before a service contract is entered into
becomes a binding term of that contract. This means that representations made at the point of
sale — including descriptions of what a service or product covers — cannot be contradicted by
separate terms buried elsewhere. This provision has particular relevance where traders make
implicit representations through the way they present products or services in a checkout or
booking flow.

== Consumer relevance ==

The CRA 2015 is the primary legislative tool available to UK consumers facing:

* Goods or services that do not match their description at point of sale
* Warranty or guarantee terms that are not disclosed prominently before purchase
* Contract terms that create a significant imbalance in favour of the trader
* Traders who attempt to rely on terms the consumer was not made aware of

Enforcement of the Act can be pursued by individual consumers through the courts or via
Alternative Dispute Resolution (ADR). Public enforcement powers rest with the Competition and
Markets Authority (CMA) and local Trading Standards services, who can take action against
traders for systemic breaches.<ref name="commons-briefing"/>

== See also ==

* [[Consumer Protection from Unfair Trading Regulations 2008]]
* [[Halfords Limited]]
* [[Tyre warranty sold via mobile fitting, redeemable only at fixed garages]]

== References ==

<references/>

[[Category:Legislation]]
[[Category:UK legislation]]

UK Online Safety Act

2026-03-17T21:37:53Z

Mr Pollo:

{{IncidentCargo
|StartDate=2023-10-26
|Status=Active
|Type=Digital restrictions
|Description=On 26 October 2023, the UK Online Safety Act passed and became law. This act restricts the freedom of UK users of the internet and increases censorship.
|ArticleType=Legislation}}

United Kingdom's [[wikipedia:Online Safety Act 2023|Online Safety Act 2023]] (OSA) is a set of laws that claims to protect children and adults online.<ref name=":2">{{Cite web |date=April 24, 2025 |title=Online Safety Act: explainer |url=https://www.gov.uk/government/publications/online-safety-act-explainer/online-safety-act-explainer |website=Gov.uk |archive-url=http://web.archive.org/web/20260221095654/https://www.gov.uk/government/publications/online-safety-act-explainer/online-safety-act-explainer |archive-date=21 Feb 2026}}</ref> The act applies to search services and services that allow users to post content online or to interact with each other ([https://www.legislation.gov.uk/ukpga/2023/50#section-4 Section 4]).

One of the duties of the act requires affected websites to implement their own solution for identity verification such that it is highly effective to prove one's age ([https://www.legislation.gov.uk/ukpga/2023/50#section-12-6 Section 12.6]). There is no official government-sanctioned identity verification platform. Each service provider must implement their own solution or find a third party solution to use to remain compliant. Another duty filters non-verified users from interacting with content made from an "adult user" ([https://www.legislation.gov.uk/ukpga/2023/50#section-15-10 Section 15.10]).<ref name="rossmann:1">{{Cite web|date=August 1, 2025|last=Rossmann |first=Louis |title=Tea app & UK Online Safety Act - the world is becoming a black mirror episode :(| url=https://www.youtube.com/watch?v=TNNsCuEvR5w&t=114 |ref=rossmann:1 |website=[[YouTube]] |access-date=August 25, 2025 |archive-url=https://preservetube.com/watch?v=TNNsCuEvR5w |archive-date=23 Feb 2026}}</ref> These non-verified users will also be less visible, provided the adult user has toggled it.

While the press release says "the measures platforms have to put in place must confirm your age without collecting or storing personal data, unless absolutely necessary,"<ref name=":3">{{Cite news |last=Kyle |first=Peter |date=2025-08-01 |title=Keeping children safe online: changes to the Online Safety Act explained |url=https://www.gov.uk/government/news/keeping-children-safe-online-changes-to-the-online-safety-act-explained |access-date=2025-08-16 |work=Gov.UK |archive-url=http://web.archive.org/web/20260219223922/https://www.gov.uk/government/news/keeping-children-safe-online-changes-to-the-online-safety-act-explained |archive-date=19 Feb 2026}}</ref> the legislation requires that companies track usage by specific people and provide data and/or remote access to Ofcom on demand ([https://www.legislation.gov.uk/ukpga/2023/50#section-100 Section 100]) <ref name=":1">{{Cite journal |date=2025-07-25 |title=Online Safety Act 2023 |url=https://www.legislation.gov.uk/ukpga/2023/50 |journal=UK Public General Acts |volume=2023 |issue=50 |archive-url=http://web.archive.org/web/20260124060534/https://www.legislation.gov.uk/ukpga/2023/50 |archive-date=24 Jan 2026}}</ref>
Enforcement of this act is done by the UK's Office of Communications (Ofcom). The penalty for breaking these rules is the greater of £18 million and 10% of the person’s qualifying worldwide revenue ([https://www.legislation.gov.uk/ukpga/2023/50#schedule-13-paragraph-4 Schedule 13.4]).<ref name=":1" />

==Background==
The Online Safety Act is a "Bill to make provision for and in connection with the regulation by Ofcom of certain internet services; for and in connection with communications offences; and for connected purposes".<ref name=":4">{{Cite web |date=2024-08-19 |title=Online Safety Act 2023 |url=https://bills.parliament.uk/bills/3137 |access-date=2025-08-17 |website=UK Parliament: Parliamentary Bills |archive-url=http://web.archive.org/web/20260118092704/https://bills.parliament.uk/bills/3137 |archive-date=18 Jan 2026}}</ref>

The Online Safety Act received royal assent on 26 October 2023, following five years of work by Carnegie UK, working in concert with over 50 partners. In 2018, Carnegie UK published a series of blogs by William Perrin and Professor Lorna Woods, outlining the proposal for social media regulation.<ref>{{Cite web |date=2025-09-01 |title=Tackling Online Harms |url=https://carnegieuk.org/programmes/online-harms/ |url-status=live |archive-url=https://web.archive.org/web/20241225063325/https://carnegieuk.org/programmes/online-harms/ |archive-date=2024-12-25 |access-date=2025-09-01 |website=Carnegie UK}}</ref> The UK Government published its [https://www.gov.uk/government/consultations/online-harms-white-paper White Paper] on 8 April 2019, tackling online harm, with a duty of care approach at its core. Carnegie UK ended their work on the Online Safety Act in October 2023.<ref name="online-safety-and-carnegie-uk">{{Cite web |last=Davidson |first=Sarah |date=26 October 2023 |title=Online safety and Carnegie UK |url=https://carnegieuk.org/blog/online-safety-and-carnegie-uk/ |archive-url=https://web.archive.org/web/20250701203854/https://carnegieuk.org/blog/online-safety-and-carnegie-uk/ |archive-date=2025-07-01 |access-date=2025-08-17 |website=Carnegie UK}}</ref><ref name=":6">{{Cite web |last=Sim |first=Kate |date=August 7, 2025| title=The Online Safety Act Has Nothing to Do With Child Safety and Everything to Do With Censorship| url=https://novaramedia.com/2025/08/07/the-online-safety-act-has-nothing-to-do-with-child-safety-and-everything-to-do-with-censorship/ |website=Novara Media |access-date=August 25, 2025 |archive-url=http://web.archive.org/web/20260120092729/https://novaramedia.com/2025/08/07/the-online-safety-act-has-nothing-to-do-with-child-safety-and-everything-to-do-with-censorship/ |archive-date=20 Jan 2026}}</ref>

The bill was sponsored by Michelle Donelan, the (now former) Conservative MP for Chippenham and Lord Parkinson of Whitley Bay, a current member of the House of Lords. Both on behalf of the UK Department for Digital, Culture, Media and Sport.<ref name=":4" />

The Online Safety Act is one act in two different stages. The original that reached royal assent on 26 October 2023 under Rishi Sunak's Conservative government, and the amended version in 2025, under Kier Starmer's Labour government. In February 2025, amendments related to making corporations more accountable for the content on their websites, as well as accountability for people accessing inappropriate content were brought to and voted on in parliament. The bill was changed again in May 2025 to include biometric face scans and government ID requirements, which was was not voted on in parliament.

[https://avpassociation.com/ Age Verification Providers Association (AVPA)] was formed in 2018 and is growing rapidly as the age and identity provider industry takes off. It represents all main technology suppliers who have invested in the development of age verification solutions to support the implementation of age restrictions online.<ref>{{Cite web |title=Age Verification Providers Association |url=https://avpassociation.com/ |archive-url=http://web.archive.org/web/20260220181305/https://avpassociation.com/ |archive-date=20 Feb 2026}}</ref>

==The impact==
Since the UK Online Safety Act applies to search services and services that allow users to post content online or to interact with each other,<ref name=":2" /> it has a broad impact across the entire internet for those accessing websites from within the UK. All online services that Ofcom deems to be within the scope of the Online Safety Act must incorporate an identity verification process to determine each user's age.<ref name=":3" /> This has forced many websites to geo-block the UK because they are too small to justify or afford implementing their own the identity verification process or partnering with a third provider. A list of affected websites is available on [https://OnlineSafetyAct.co.uk OnlineSafetyAct.co.uk].

The broad range of the act has caused content from breaking news,<ref name=":5">{{Cite web |last=Koopman |first=Saskia |date=August 13, 2025 |title=Why the Online Safety Act has become a political nightmare |url=https://www.cityam.com/why-labours-online-safety-act-has-become-a-political-nightmare/ |website=City AM |access-date=August 25, 2025 |archive-url=http://web.archive.org/web/20251208042013/https://www.cityam.com/why-labours-online-safety-act-has-become-a-political-nightmare/ |archive-date=8 Dec 2025}}</ref> war footages,<ref>{{Cite web |last=Maiberg |first=Emanuel |date=July 29, 2025 |title=UK Users Need to Post Selfie or Photo ID to View Reddit's r/IsraelCrimes, r/UkraineWarFootage |url=https://www.404media.co/uk-users-need-to-post-selfie-or-photo-id-to-view-reddits-r-israelcrimes-r-ukrainewarfootage/ |archive-url=http://web.archive.org/web/20260216122744/https://www.404media.co/uk-users-need-to-post-selfie-or-photo-id-to-view-reddits-r-israelcrimes-r-ukrainewarfootage/ |archive-date=16 Feb 2026|access-date=August 25, 2025 |website=404 Media}}</ref> and political videos<ref name=":6" /> to be heavily suppressed and labelled "harmful".

===Spotify===
To view age-restricted content on [[Spotify]], users in the UK are now asked for facial scanning; if that fails, only ID verification can correct the error.<ref>{{Cite news |last=Cole |first=Samantha |title=Spotify Is Forcing Users to Undergo Face Scanning to Access Explicit Content |url=https://www.404media.co/spotify-uk-age-check-verification-yoti/ |access-date=3 August 2025 |work=404 Media |date=30 July 2025 |archive-url=https://web.archive.org/web/20260222232121/https://www.404media.co/spotify-uk-age-check-verification-yoti/ |archive-date=22 Feb 2026|url-status=live}}</ref>

===YouTube===
{{Main|YouTube age verification}}
On 30 July 2025, [[YouTube]] responded by announcing its verification system, requesting users for either a government-issued ID, a photo, or credit card, in order to show that users are 18 and older. Age will be estimated through various information, including videos watched, and would lock users flagged below 18 unless they send one of aforementioned proofs.<ref>{{Cite web |last=Ingram |first=Michael |date=30 Jul 2025 |title=YouTube is Rolling Out A New Controversial Feature |url=https://gamerant.com/youtube-new-age-verification-feature-id-recognition/ |url-status=live |archive-url=http://web.archive.org/web/20251204064951/https://gamerant.com/youtube-new-age-verification-feature-id-recognition/ |archive-date=4 Dec 2025|access-date=14 Aug 2025 |website=GameRant}}</ref>

===Wikipedia===
The Wikimedia Foundation (WMF), which owns the digital encyclopedia platform [[Wikipedia]], sued the United Kingdom to prevent them from forcing age checks on their websites. The WMF made a statement that being forced to comply with this act would compromise the privacy of its editors and the neutrality of the encyclopedia. On 11 August 2025, the London High Court denied the WMF's reasoning, but didn't necessarily force age checks for the website.<ref>{{Cite web |last=Castro |first=Chiara |date=August 12, 2025 |title=Case dismissed – Wikipedia loses UK Online Safety Act legal challenge, but it may still be safe from age checks |url=https://www.techradar.com/vpn/vpn-privacy-security/case-dismissed-wikipedia-loses-uk-online-safety-act-legal-challenge-but-it-may-still-be-safe-from-age-checks |archive-url=http://web.archive.org/web/20260206093500/https://www.techradar.com/vpn/vpn-privacy-security/case-dismissed-wikipedia-loses-uk-online-safety-act-legal-challenge-but-it-may-still-be-safe-from-age-checks |archive-date=6 Feb 2026}}</ref><ref>{{Cite web |date=11 August 2025 |title=Wikimedia Foundation Challenges UK Online Safety Act Regulations |url=https://wikimediafoundation.org/news/2025/08/11/wikimedia-foundation-challenges-uk-online-safety-act-regulations/ |archive-url=http://web.archive.org/web/20250912103928/https://wikimediafoundation.org/news/2025/08/11/wikimedia-foundation-challenges-uk-online-safety-act-regulations/ |archive-date=12 Sep 2025}}</ref>

===4Chan===
4chan is a simple image-based bulletin board where anyone can post comments and share images.

====Ofcom's investigation====
On 14 April 2025, Ofcom issued a formal information notice to the provider of the service 4chan requesting a copy of the record of its Illegal Content Risk Assessment, as part of the [https://www.ofcom.org.uk/online-safety/illegal-and-harmful-content/enforcement-programme-to-monitor-if-services-meet-their-illegal-content-risk-assessment-and-record-keeping-duties-under-the-online-safety-act-2023 Risk Assessment Enforcement Programme]. At the date of opening this investigation, no response has been received to the information notice.<ref>{{Cite web |date=2025-08-13 |title=Investigation into 4chan and its compliance with duties to protect its users from illegal content |url=https://www.ofcom.org.uk/online-safety/illegal-and-harmful-content/investigation-into-4chan-and-its-compliance-with-duties-to-protect-its-users-from-illegal-content |archive-url=https://web.archive.org/web/20250615131417/https://www.ofcom.org.uk/online-safety/illegal-and-harmful-content/investigation-into-4chan-and-its-compliance-with-duties-to-protect-its-users-from-illegal-content |archive-date=2025-06-15 |access-date=2025-08-18 |website=Ofcom}}</ref>

On 10 June 2025, Ofcom opened an investigation into "the online discussion board" 4chan. The investigation will consider 4chan's compliance with its duties under the Online Safety Act 2023. Ofcom has powers under [https://www.legislation.gov.uk/ukpga/2023/50#section-102-8 section 102(8)] of the Act to require persons to respond to an information notice in the manner and form specified.

On 13 August 2025, Ofcom, in accordance with section 130 of the Online Safety Act 2023, issued 4chan Community Support LLC with a provisional notice of contravention, believing they had reasonable grounds for believing 4chan has contravened its duties under section 102(8) of the Act to comply (Ofcom.org appears to have blocked Archive.org from this and other pages sometime in July 2025).

====4chan's response====
Attorneys Preston Byrne and Ron Coleman, acting for 4chan, responded publicly to Ofcom’s provisional notice, which accuses the American company of failing to meet information notice requirements and possibly breaching duties related to content moderation.

The attorneys described the UK’s actions as an “illegal campaign of harassment” targeting American tech firms and warned that this extraterritorial enforcement of censorship law was incompatible with the First Amendment.<ref>{{Cite news |last=Harper |first=Cindy |date=2025-08-18 |title=4chan Lawyers Fire Back as UK Tries to Censor from Across the Pond |url=https://reclaimthenet.org/us-lawyers-defend-4chan-against-uk-online-safety-act-enforcement |archive-url=http://web.archive.org/web/20250824210758/https://reclaimthenet.org/us-lawyers-defend-4chan-against-uk-online-safety-act-enforcement |archive-date=24 Aug 2025|access-date=2025-08-18 |work=Reclaim the Net}}</ref>

Since enforcement began, the UK’s media regulator Ofcom has reportedly sent formal notices to several US tech companies, instructing them to comply or face penalties. These letters have ignited backlash among American lawmakers, many of whom argue that Britain has crossed a line by trying to dictate speech rules to American businesses and citizens. House Judiciary Chair Jim Jordan, along with other members of Congress, has taken his concerns directly to British ministers, raising objections with Science Secretary Peter Kyle.<ref>{{Cite news |last=Frieth |first=Dan |date=2025-07-31 |title=The White House Puts UK Prime Minister Keir Starmer on Notice Over UK’s Dangerous Online Censorship Laws |url=https://reclaimthenet.org/us-uk-clash-over-online-safety-act-free-speech |archive-url=http://web.archive.org/web/20260211191542/https://reclaimthenet.org/us-uk-clash-over-online-safety-act-free-speech |archive-date=11 Feb 2026|access-date=2025-08-18 |work=Reclaim the Internet}}</ref>

==Data breaches including ID documents==
Since the Online Safety Act came into effect, at least one known data breach has included sensitive ID documents used for age verification. Note that these breaches may ''not'' be linked directly to age verification methods implemented for OSA compliance, but nonetheless highlight the risks of sensitive ID documents being handled by private organizations.

===Discord Third-Party Customer Service (5CA)===
On 3 October 2025, [[Discord]] issued a press release announcing "a Security Incident Involving Third-Party Customer Service [5CA]", in which "The unauthorized party [...] gained access to a small number of government‑ID images (e.g., driver’s license, passport) from users who had appealed an age determination".<ref>{{Cite web |date=2025-10-03 |title=Update on a Security Incident Involving Third-Party Customer Service |url=https://discord.com/press-releases/update-on-security-incident-involving-third-party-customer-service |url-status=live |archive-url=https://web.archive.org/web/20251006163040/https://discord.com/press-releases/update-on-security-incident-involving-third-party-customer-service |archive-date=2025-10-06 |access-date=2025-10-07 |website=discord.com}}</ref> The total number of ID images exposed was approximately 70,000. The data accessed came from an age-related appeals process which has been in place since before the OSA came into effect, and is used in conjunction with an "Automatic Age Check" system using k-ID.<ref>{{Cite web |date=2024-12-19 |title=Help! I'm old enough to use Discord in my country but I got locked out? |url=https://support.discord.com/hc/en-us/articles/360041820932-Help-I-m-old-enough-to-use-Discord-in-my-country-but-I-got-locked-out |url-status=live |archive-url=https://web.archive.org/web/20250127212200/https://support.discord.com/hc/en-us/articles/360041820932-Help-I-m-old-enough-to-use-Discord-in-my-country-but-I-got-locked-out |archive-date=27 Jan 2025 |access-date=2025-10-13 |website=Discord}}</ref>

==Consumer response==
According to analysis by Cloudwards, [[Google]] searches for "how to get around age verification" and "is VPN legal in the UK" saw a massive growth of over 450 thousand and 380 thousand percent respectively.<ref name=":5" /> United Kingdom saw an increased VPN usage by 1400 percent.<ref name="UK_VPN">{{Cite web |last=Speed |first=Richard |date=July 28, 2025 |title=UK VPN demand soars after debut of Online Safety Act |url=https://www.theregister.com/2025/07/28/uk_vpn_demand_soars/ |access-date=August 15, 2025 |website=The Register |archive-url=http://web.archive.org/web/20260211054348/https://www.theregister.com/2025/07/28/uk_vpn_demand_soars/ |archive-date=11 Feb 2026}}</ref> As of 16 August 2025, there has been at least 500 thousand signatures petitioning to repeal the act.<ref name=":0">{{Cite web |last=Baynham |first=Alex |date=2025-04-22 |title=Repeal the Online Safety Act |url=https://petition.parliament.uk/petitions/722903 |website=Petitions: UK Government and Parliament |archive-url=http://web.archive.org/web/20260128065314/https://petition.parliament.uk/petitions/722903 |archive-date=28 Jan 2026}}</ref>

===OnlineSafetyAct.co.uk===
[https://onlinesafetyact.co.uk/in_memoriam/ OnlineSafetyAct.co.uk] is a website which was created in response to the Act's implementation and is operated by Neil Brown,<ref>{{Cite web |last=Brown |first=Neil |title=OnlineSafetyAct.co.uk |url=https://onlinesafetyact.co.uk/contact/ |access-date=2025-08-16 |website=OnlineSafetyAct.co.uk}} ([http://web.archive.org/web/20260210232703/https://onlinesafetyact.co.uk/ Archived])</ref> a UK tech lawyer ([https://decoded.legal decoded.legal]).<ref>{{Cite web |last=Brown |first=Neil |title=Neil Brown (@neil@mastodon.neilzone.co.uk) |url=https://mastodon.neilzone.co.uk/@neil |access-date=2025-08-16 |website=mastodon.neilzone.co.uk |archive-url=http://web.archive.org/web/20260216062932/https://mastodon.neilzone.co.uk/@neil |archive-date=16 Feb 2026}}</ref> It lists all of the websites affected by the Online Safety Act, with the help of user submissions.

===Use Their ID===
[https://use-their-id.com/ Use Their ID.com] is a parody site that uses publicly available data about UK members of parliament to create AI-generated mock driving licences. They are clearly marked as satire and users are warned not to use them for anything real.<ref>{{Cite web |date=2025-07-28 |title=Use Their ID |url=https://use-their-id.com/ |archive-url=https://web.archive.org/web/20250730001620/https://use-their-id.com/ |archive-date=2025-07-30 |access-date=2025-08-17}}</ref>

==Industry expert response==
The act has been [https://www.internetsociety.org/resources/internet-fragmentation/uk-online-safety-act/ opposed] as early as December 2023 by Internet Society.

===Electronic Frontier Foundation===
The Electronic Frontier Foundation (EFF) posted an article entitled [https://www.eff.org/deeplinks/2025/08/no-uks-online-safety-act-doesnt-make-children-safer-online No, the UK’s Online Safety Act Doesn’t Make Children Safer Online], and covers the threat to privacy of internet users and how the bill restricts free expression by arbitrating speech online, exposing users to algorithmic discrimination through face checks, and leaves millions of people without a personal device or form ID excluded from accessing the internet.

<blockquote>The internet must remain a place where all voices can be heard, free from discrimination or censorship by government agencies. If the UK really wants to achieve its goal of being the safest place in the world to go online, it must lead the way in introducing policies that actually protect all users—including children—rather than pushing the enforcement of legislation that harms the very people it was meant to protect.<ref>{{Cite web |last=Collings |first=Paige |date=2025-08-01 |title=No, the UK’s Online Safety Act Doesn’t Make Children Safer Online |url=https://www.eff.org/deeplinks/2025/08/no-uks-online-safety-act-doesnt-make-children-safer-online |archive-url=https://web.archive.org/web/20250812070622/https://www.eff.org/deeplinks/2025/08/no-uks-online-safety-act-doesnt-make-children-safer-online |archive-date=2025-08-12 |access-date=2025-08-17 |website=Electronic Frontier Foundation}}</ref></blockquote>

===Theo Browne, YouTuber & CEO at T3 Chat===
[[File:Online Safety Act- Offloading Responsibility. .png|thumb|Parents, government, platforms, identity providers]]Theo posted a [https://www.youtube.com/watch?v=6TZozNjPcGw YouTube video] covering the Online Safety Act and how it going to destroy the free internet if the internet community doesn't stop it ASAP. He said it's rare that he gets that extreme about something like this, but believes that it is a really important thing that the community jump in front of.

The Online Safety Act will normalise providing your government-issued identification in order to see content, making everyone more susceptible and vulnerable to phishing attacks perpetrated by identity thieves. The act also shifts the responsibility of child safety to the government, who in turn shift it to the websites, who in turn shift it to a brand new identity and age verification industry.

==Government response==
Ofcom discouraged the promotion of VPNs.<ref name="UK_VPN" />

UK Parliament considers all petitions that get more than 100,000 signatures for debate. On 28 July 2025, when the petition to repeal the act had about 400,000 signatures, the government responded with this message: "The Government has no plans to repeal the Online Safety Act, and is working closely with Ofcom to implement the Act as quickly and effectively as possible to enable UK users to benefit from its protections.", only a few days after coming into force.<ref name=":0" /> This was only after three days (25 July 2025) the "highly effective age assurance" requirement came into force.<ref>{{Cite web |last=Department for Science, Innovation and Technology |date=2025-07-24 |title=Collection: Online Safety Act |url=https://www.gov.uk/government/collections/online-safety-act |archive-url=https://web.archive.org/web/20250724092803/https://www.gov.uk/government/collections/online-safety-act |archive-date=24 Jul 2025 |website=Gov.UK}}</ref>

The technology minister Peter Kyle said on Good Morning Britain, "if you want to overturn the Online Safety Act you are on the side of predators. Not those who want to keep children safe".<ref>{{Cite news |date=2025-07-29 |title=Peter Kyle Says 'Nigel Farage Is on the Side of Predators' |url=https://www.youtube.com/watch?v=y-MaeOLISlA |access-date=2025-08-16 |work=Good Morning Britain, Youtube |archive-url=https://preservetube.com/watch?v=y-MaeOLISlA |archive-date=23 Feb 2026}}</ref>

==See also==

*[[Ofcom]]
*[[General Data Protection Regulation]]

==External links==
*https://www.ofcom.org.uk/online-safety/illegal-and-harmful-content/roadmap-to-regulation

==References==
{{reflist}}


[[Category:Legislation in Europe]]
[[Category:UK legislation]]

Category:UK legislation

2026-03-17T21:37:22Z

Mr Pollo: Created page with "Category:Legislation in Europe"

[[Category:Legislation in Europe]]

Category:Buffalo Wild Wings

2026-03-17T21:35:43Z

Mr Pollo: Created page with "Category:Food and drink companies Category:Fast food"

[[Category:Food and drink companies]]
[[Category:Fast food]]

Buffalo Wild Wings

2026-03-17T21:35:36Z

Mr Pollo:

{{StubNotice}}
{{Cleanup}}

{{CompanyCargo
|Founded=1982
|Industry=Food
|Logo=Buffalo Wild Wings.png
|ParentCompany=Inspire Brands
|Type=Subsidiary
|Website=http://buffalowildwings.com/
}}[[wikipedia:Buffalo_Wild_Wings|Buffalo Wild Wings]] was founded in 1982 and is a American causal dining and sports bar restaurant specializing in alcoholic beverages and chicken wings. It is a subsidiary of Inspire Brands.

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===Norovirus Outbreak===
https://www.aboutlawsuits.com/buffalo-wild-wings-food-poisoning-94234/

===Hepatitis A===
https://www.nbclosangeles.com/news/local/hepatitis-a-infection-buffalo-wild-wings-monterey-park/3570595/
https://www.youtube.com/watch?v=3YO3066PC1k
https://www.youtube.com/watch?v=hqLtKI9oFzw Officials warn of possible Hepatitis A Exposure at delaware Buffalo Wild Wings

===Adding "afford care" charge===
https://www.youtube.com/watch?v=Ft5REaOFnn4 2015 Jan 8

===Point Program Contain Security Vulnerabilities===
https://www.nytimes.com/2019/05/11/business/rewards-loyalty-program-fraud-security.html

https://www.reddit.com/r/BuffaloWildWings/comments/z1irzs/login_issues_website_and_blazin_rewards_app/

https://www.reddit.com/r/BuffaloWildWings/comments/kbmm5k/hacked_accounts/

https://www.reddit.com/r/BuffaloWildWings/comments/yackqa/rewards_account_hacked/

https://www.reddit.com/r/BuffaloWildWings/comments/xjm8xz/i_cant_believe_people_have_the_time_of_day_to/

https://www.reddit.com/r/BuffaloWildWings/comments/y1j1mu/my_account_was_hacked_and_points_stolen_how_do_i/

https://www.reddit.com/r/BuffaloWildWings/comments/125mx0f/heart_breaking_stuff_my_bdubs_account_was_hacked/

https://www.reddit.com/r/BuffaloWildWings/comments/uacerj/my_account_with_50_thousand_points_was_hacked/

https://www.reddit.com/r/BuffaloWildWings/comments/ol3ob8/someone_hacked_into_my_account_and_used_my_rewards/

https://www.reddit.com/r/BuffaloWildWings/comments/hz1fqe/app_fraud/

https://www.reddit.com/r/BuffaloWildWings/comments/xfb31n/blazin_rewards_app_login_issue/

https://www.reddit.com/r/BuffaloWildWings/comments/z1irzs/login_issues_website_and_blazin_rewards_app/

https://www.reddit.com/r/BuffaloWildWings/comments/ub5owc/anybody_else_give_up_on_using_the_app_or_website/

https://www.reddit.com/r/BuffaloWildWings/comments/17qm18g/about_time_tired_of_getting_my_account_hacked/

https://www.reddit.com/r/BuffaloWildWings/comments/133dzn6/youve_scanned_your_receipt_and_earned_0_points/

https://www.reddit.com/r/Scams/comments/txovg3/are_buffalo_wild_wings_resorting_to_scamming/

https://www.reddit.com/r/BuffaloWildWings/comments/wa94he/stolen_points_no_response_from_bww/ (images)'

https://www.reddit.com/r/BuffaloWildWings/comments/18vf7s5/cant_login_number_verification_bugged/

https://www.reddit.com/r/BuffaloWildWings/comments/s8vkoa/dont_hoard_your_points_folks_i_live_in_ohio_got/<nowiki/>(pictures)

https://www.reddit.com/r/assholedesign/comments/12j3cke/buffalo_wild_wings_wont_let_you_create_an_account/ (Force ARbiration)

https://www.reddit.com/r/BuffaloWildWings/comments/ytf8xe/someone_redeemed_all_my_points_in_a_state_ive/ (images)

https://www.reddit.com/r/BuffaloWildWings/comments/z1irzs/login_issues_website_and_blazin_rewards_app/

===Hidden Delivery Fee===
https://www.classaction.org/news/class-action-claims-buffalo-wild-wings-charges-hidden-delivery-fee-disguised-as-service-fee

===Hidden Carryout Fee===
https://www.classaction.org/news/buffalo-wild-wings-hit-with-class-action-over-hidden-carryout-fee

==Consumer Mistreatment==

===Making Fun of Homeless People===
https://www.cbsnews.com/philadelphia/news/homeless-man-buffalo-wild-wings/

https://lovelyti.com/2018/06/03/buffalo-wild-wings-gives-homeless-man-free-wings-for-a-year-after-employee-writes-horrid-message-on-receipt/

https://www.foxnews.com/food-drink/buffalo-wild-wings-gives-homeless-man-free-wings-for-a-year-after-staffer-writes-derogatory-message-on-receipt

https://www.theroot.com/buffalo-wild-wings-gives-homeless-man-free-wings-for-a-year-after-employee-writes-horrid-message-on-receipt

===Prioritizing Racist Customers over Black Customers===
https://www.youtube.com/watch?v=_ThoWeZJvjA Navervill

https://www.youtube.com/watch?v=xb1beo9JbjA Navervill

https://www.youtube.com/watch?v=3YO3066PC1k Navervill

===Customers not allowed to sing the National Athem after previously being allowed to===
https://www.youtube.com/watch?v=lx_y-oqR16E

===Refusing to Serve customers based on their Race and Gender===
https://www.foxnews.com/food-drink/buffalo-wild-wings-racial-discrimination-lawsuit

https://www.youtube.com/watch?v=ej7RI_c2gwQ 

===Customers Kiced out for order food at Takeout then eating at Restaurant===
{{Incomplete section}}

===Printing Racial Slurs on Receipts===
https://atlantablackstar.com/2025/11/25/black-couple-sues-buffalo-wild-wings-for-5-million-after-ordering-takeout-then-finding-racial-slur-on-their-receipt/

https://www.blackenterprise.com/couple-sues-buffalo-wild-wings-over-documented-racial-slur/

https://www.reddingnewsreview.com/black-veteran-files-5-million-lawsuit-after-racist-slur-printed-on-buffalo-wild-wings-receipt

===Gender Checking Customers, even following them to the bathrooms.===
{{Incomplete section}}

==See also==

*[[KFC]]
*[[Popeyes]]

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Sonic

2026-03-17T21:34:46Z

Mr Pollo:

{{Incomplete}}
{{CompanyCargo
|Founded=1953-06-18
|Industry=Food
|Logo=Sonic Corporation Logo.png
|ParentCompany=Inspire Brands
|Type=Subsidiary
|Website=http://sonicdrivein.com/
|Description=
}}
'''[[wikipedia:Sonic_Drive-In|Sonic]]''' is a fast food company founded in 1953.

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===Malware attack (2017)===
{{Main|link to the main CR Wiki article}}

On September 16, KrebonSecurity disclosed that Sonic suffered a data breach on its Point of sales systems, exposing an estimate 5 millions of customers financial information are being sold on a website called Joker’s Stash.<ref>{{Cite web |date=26 September 2017 |title=Breach at Sonic Drive-In May Have Impacted Millions of Credit, Debit Cards |url=https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ |url-status=live |archive-url=https://web.archive.org/web/20180211195243/https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ |archive-date=11 February 2018 |access-date=16 March 2026 |website=KrebsOnSecurity}}</ref> A few days later, the blog got traction on social media, with major new outlets covering the leak.<ref>{{Cite web |date=28 September 2017 |title=Data breach at Sonic restaurants could affect millions of customers |url=https://www.youtube.com/watch?v=Uu7mZYYWM8c |url-status=live |access-date=16 March 2026 |website=Youtube}}</ref> The company issued a public response on its website on October 4, acknowledging the breach and offering affected customers 24 months fraud protection until December 24, 2017.<ref>{{Cite web |date=4 October 2017 |title=SONIC Drive-In: Notice of Payment Card Breach |url=https://ir.sonicdrivein.com/releasedetail.cfm?releaseid=1042818 |url-status=dead |archive-url=https://web.archive.org/web/20171015010107/https://ir.sonicdrivein.com/releasedetail.cfm?releaseid=1042818 |archive-date=15 October 2017 |access-date=16 March 2026 |website=Sonic Drive In}}</ref>

The company faced 12 lawsuits from customers because of this incident, alleging the company's failure to implement up to date security practices and disclosing the incidents to customers.<ref>{{Cite web |date=12 February 2018 |title=IN THE UNITED STATES DISTRICT COURT FOR THE NORTHERN DISTRICT OF OHIO EASTERN DIVISION AT CLEVELAND |url=https://www.ohnd.uscourts.gov/sites/ohnd/files/2807-26.pdf |url-status=live |archive-url=https://web.archive.org/web/20201020020507/https://www.ohnd.uscourts.gov/sites/ohnd/files/2807-26.pdf |archive-date=20 October 2020 |access-date=16 March 2026 |website=ohnd.uscourts.gov}}</ref><ref>{{Cite web |last=Rizzi |first=Corrado |date=29 September 2017 |title=Sonic Hit with Class Action Almost Immediately After Data Breach Announcement |url=https://www.classaction.org/news/sonic-hit-with-class-action-almost-immediately-after-data-breach-announcement |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=15 November 2017 |title=Sonic Facing Another Class Action in the Wake of Data Breach |url=https://www.classaction.org/news/sonic-facing-another-class-action-in-the-wake-of-data-breach |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=5 October 2017 |title=Sonic Corp. Facing Third Lawsuit Over Recent Data Breach |url=https://www.classaction.org/news/sonic-corp-facing-third-lawsuit-over-recent-data-breach |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=19 December 2017 |title=Sonic Data Breach Sparks Another Class Action |url=https://www.classaction.org/news/sonic-data-breach-sparks-another-class-action |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref> On October 2018, a $4.3 million settlement was reached.<ref>{{Cite web |last=Spicer |first=Christina |date=15 October 2018 |title=$4.3M Sonic Data Breach Class Action Settlement Reached |url=https://topclassactions.com/lawsuit-settlements/lawsuit-news/4-3m-sonic-data-breach-class-action-settlement-reached/ |url-status=live |access-date=16 March 2026 |website=Top Class Action}}</ref> In May 2022, a $5.4 settlement was reached, requiring sonic pay $3

million to reimburse financial institutions, and $1 or $1.50 for each payment card reissued or involved.<ref>{{Cite web |last=Heisig |first=Eric |date=7 October 2022 |title=Judge Signals Approval For Sonic's Data Breach Settlement |url=https://www.bfvlaw.com/wp-content/uploads/2022/10/Judge-Signals-Approval-For-Sonics-Data-Breach-Settlement-Law360.pdf |url-status=live |access-date=16 March 2026 |website=Law360}}</ref>[[File:Plaintiff messages in Sonic 2020 lawsuit.png|thumb|Plaintiff messages in Sonic 2020 lawsuit.]]

===Sonic Spam Messages===

====2020 Lawsuit====
On October 21, Plaintiff Danny Collins filed a class action lawsuit against Sonic, alleging the company repeatedly sent her advertising messages even after opting out by replying "Stop". The Plantiff seeks $500 or $1500 for each unsolicited marketing messages sent to consumers.<ref>{{Cite web |last=Rizzi |first=Corrado |date=22 October 2020 |title=Sonic Drive-In Hit with Class Action in Oklahoma Over Alleged Spam Texts |url=https://www.classaction.org/news/sonic-drive-in-hit-with-class-action-in-oklahoma-over-alleged-spam-texts |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |date=27 October 2020 |title=Sonic TCPA Lawsuit & Fast Food Telemarketing Violations |url=https://thelyonfirm.com/blog/sonic-tcpa-lawsuit/ |url-status=live |access-date=16 March 2026 |website=The Lyon Firm}}</ref> As of March 2026, the case is still in progress.
====2023 Lawsuit====
On January 11, a customer from Florida filed a class action lawsuit over unsolicited marketing text sent by the company. Since July 1, 2021 till December 2022, the plaintiff received marketing messages without prior consent, with one of the messages reading;<ref>{{Cite web |last=Mehorter |first=Kelly |date=13 January 2023 |title=Class Action Alleges Sonic Drive-In Sent Illegal Spam Texts |url=https://www.classaction.org/news/class-action-alleges-sonic-drive-in-sent-illegal-spam-texts |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><blockquote>Today only at SONIC: $0.99 Small Mozzarella Sticks! Deal

auto-applies in the app & at participating drive-ins 12/15. Lmt

5. +tax. Txt STOP to end</blockquote>As of May 2026, the case is still in progress.

====2025 Lawsuit====
On March 4, a lawsuit was filed against Sonic for sending marketing text to customers without consent. The plaintiff claimed he was on the registry to not receive marketing text, however on March 6, 11, 13, 15, and 20, the company sent him marketing messages. Additionally, the plaintiff claims to have never had any business relationships with them.<ref>{{Cite web |last=Landis |first=Blake |date=6 March 2025 |title=FROM CORN DOGS TO COURTROOMS: Sonic’s Texts Might Cost More Than a Combo Meal |url=https://natlawreview.com/article/corn-dogs-courtrooms-sonics-texts-might-cost-more-combo-meal |url-status=live |access-date=16 March 2026 |website=The National Law Review}}</ref> The lawsuit was dismissed on September 29, 2025.

==Products==
{{Ph-C-P}}

==See also==

*[[Subway]]
*[[Popeyes]]

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Category:Shake Shack

2026-03-17T21:34:09Z

Mr Pollo: Created page with "Category:Food and drink companies Category:Fast food"

[[Category:Food and drink companies]]
[[Category:Fast food]]

Shake Shack

2026-03-17T21:34:00Z

Mr Pollo:

{{Incomplete}}
{{CompanyCargo
|Founded=2004-07
|Industry=Food
|Logo=Shake Shack logo.png
|Type=Public
|Website=https://www.shakeshack.com/
}}
[[wikipedia:Shake_Shack|Shake Shack Inc.]] is a fast food company founded in 2004.

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===Website was inaccessible to Disabled Individuals===
On June 30, 2017, a class action lawsuit was filed that claimed the company website violated the Americans with Disabilities act by failing to provide access to blind and visually impaired individuals, claiming customers with those disabilities find struggle to navigate the website independently.<ref>{{Cite web |last=Rizzi |first=Corrado |date=30 June 2017 |title=Shake Shack Hit with ADA Class Action Over Website Accessibility |url=https://www.classaction.org/news/shake-shack-hit-with-ada-class-action-over-website-accessibility#comments |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref name=":0">{{Cite web |last=Surewicz |first=Anita |date=12 May 2023 |title=The Biggest Scandals In Shake Shack History |url=https://www.mashed.com/1284722/biggest-scandals-shake-shack-history/ |url-status=live |access-date=16 March 2026 |website=Mashed}}</ref> On May 8, 2023, the case was moved to Judge Ronnie Abrams.<ref>{{Cite web |date=16 March 2026 |title=UNITED STATES DISTRICT COURT SOUTHERN DISTRICT OF NEW YORK |url=https://cases.justia.com/federal/district-courts/new-york/nysdce/1:2023cv03431/597723/6/0.pdf |url-status=live |access-date=16 March 2026 |website=Justia}}</ref> The case is still progressing as of March 2026.

===Shake Shack Stole $10 million from Smaller Companies===
Launching on April 3, the Paycheck Protection Program, affiliated with the Coronavirus Aid, Relief and Economic Security (CARES) Act, was a loan plan designed to help smaller businesses and nonprofits during Covid-19.<ref>{{Cite web |last=Linly |first=Zack |date=20 April 2020 |title=Shake Shack Returns $10 Million in Relief Funds and Asks That Small Businesses Be Given More Access |url=https://www.theroot.com/shake-shack-returns-10-million-in-relief-funds-and-asks-that-small-businesses-be-given-more-access |url-status=live |access-date=16 March 2026 |website=The Root}}</ref> Shake Shack applied for the Paycheck Protection Program, receiving $10 million, and weeks later, firing over 1,000 employees.<ref>{{Cite web |last=Koenig |first=Ronnie |date=20 April 2020 |title=After big companies face backlash over loans, Shake Shack returns $10 million |url=https://www.today.com/food/after-big-companies-face-backlash-over-loans-shake-shack-returns-t179269 |url-status=live |access-date=16 March 2026 |website=Today}}</ref> The company received huge amount of backlash for receiving loans that smaller businesses struggled to obtain. On April 20, Shake Shack would announce they're returning the $10 million loan, citing they are "fortunate to now have access to capital that others do not" and "urge Congress to ensure that all restaurants no matter their size have equal ability to get back on their feet and hire back their teams." Additionally, they also criticized the program, saying it was confusing, "unidentified", and saying they had no idea funds would run out in two weeks.<ref>{{Cite web |last=Garutti |first=Randy |date=20 April 2020 |title=Shake Shack is returning its PPP Loan. Here’s why: |url=https://www.linkedin.com/pulse/shake-shack-returning-its-ppp-loan-heres-why-randy-garutti/ |url-status=live |archive-url=https://web.archive.org/web/20200421105710/https://www.linkedin.com/pulse/shake-shack-returning-its-ppp-loan-heres-why-randy-garutti/ |archive-date=21 April 2020 |access-date=16 March 2026 |website=LinkedIn}}</ref> However, two days earlier before the announcement, Shake Shack announced raising $150 million in an equity offering.<ref>{{Cite web |last=Concepcion |first=Summer |date=20 April 2020 |title=Shake Shack Hands Back $10 Million Loan After Small Biz Program Runs Out Of Funds |url=https://talkingpointsmemo.com/news/shake-shack-return-loan-paycheck-protection-program |url-status=live |access-date=16 March 2026 |website=Talking Points Memo}}</ref><ref>{{Cite web |last=Collman |first=Ashley |date=20 April 2020 |title=Shake Shack received, then returned, $10 million in coronavirus stimulus funding after being criticized for taking money meant for struggling small businesses |url=https://www.businessinsider.com/shake-shack-returns-govt-coronavirus-loan-criticism-small-businesses-2020-4 |url-status=live |access-date=16 March 2026 |website=Business Insider}}</ref><ref name=":0" />

===Adding Hidden Fees for Delivery Orders===
Plaintiff Aviva Copaken originally filed a legal complaint in 2024 December 16, however the complaint turned into a class action lawsuit against Shake Shack on February 27, 2025.<ref>{{Cite web |last=Jennings |first=Lisa |date=5 March 2025 |title=Shake Shack sued for not adequately disclosing delivery fees in California |url=https://www.restaurantbusinessonline.com/operations/shake-shack-sued-not-adequately-disclosing-delivery-fees-california |url-status=live |access-date=16 March 2026 |website=Restaurant Business}}</ref> The lawsuit alleges Shake Shack added undisclosed hidden fees on delivery and mobile orders labeled "Courier fees" and "Service fees' to customers orders at the last minute, adding that it only shows the hidden fees at the final payment screen.<ref>{{Cite web |first= |date=6 June 2025 |title=Shake Shack’s illegal hidden fees. |url=https://evilcorporations.com/shake-shack-lawsuit-hidden-fees-drip-pricing/ |url-status=live |access-date=16 March 2026 |website=Evil Corporations}}</ref><ref>{{Cite web |last=Mehorter |first=Kelly |date=5 March 2025 |title=Shake Shack Lawsuit Filed Over Allegedly Hidden Service, Delivery Fees Online |url=https://www.classaction.org/news/shake-shack-lawsuit-filed-over-allegedly-hidden-service-delivery-fees-online |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref> The lawsuit has not come to a result yet as of March 2026.
==Products==
{{Ph-C-P}}

==See also==

*[[Sonic]]
*[[Arby's]]
*[[Wendy's]]

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Category:In-N-Out Burger

2026-03-17T21:33:29Z

Mr Pollo: Created page with "Category:Food and drink companies Category:Fast food"

[[Category:Food and drink companies]]
[[Category:Fast food]]

Shake Shack

2026-03-17T21:33:22Z

Mr Pollo:

{{Incomplete}}
{{CompanyCargo
|Founded=2004-07
|Industry=Food
|Logo=Shake Shack logo.png
|Type=Public
|Website=https://www.shakeshack.com/
}}[[wikipedia:Shake_Shack|Shake Shack Inc.]] is also a company. =)

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===Website was inaccessible to Disabled Individuals===
On June 30, 2017, a class action lawsuit was filed that claimed the company website violated the Americans with Disabilities act by failing to provide access to blind and visually impaired individuals, claiming customers with those disabilities find struggle to navigate the website independently.<ref>{{Cite web |last=Rizzi |first=Corrado |date=30 June 2017 |title=Shake Shack Hit with ADA Class Action Over Website Accessibility |url=https://www.classaction.org/news/shake-shack-hit-with-ada-class-action-over-website-accessibility#comments |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref name=":0">{{Cite web |last=Surewicz |first=Anita |date=12 May 2023 |title=The Biggest Scandals In Shake Shack History |url=https://www.mashed.com/1284722/biggest-scandals-shake-shack-history/ |url-status=live |access-date=16 March 2026 |website=Mashed}}</ref> On May 8, 2023, the case was moved to Judge Ronnie Abrams.<ref>{{Cite web |date=16 March 2026 |title=UNITED STATES DISTRICT COURT SOUTHERN DISTRICT OF NEW YORK |url=https://cases.justia.com/federal/district-courts/new-york/nysdce/1:2023cv03431/597723/6/0.pdf |url-status=live |access-date=16 March 2026 |website=Justia}}</ref> The case is still progressing as of March 2026.

===Shake Shack Stole $10 million from Smaller Companies===
Launching on April 3, the Paycheck Protection Program, affiliated with the Coronavirus Aid, Relief and Economic Security (CARES) Act, was a loan plan designed to help smaller businesses and nonprofits during Covid-19.<ref>{{Cite web |last=Linly |first=Zack |date=20 April 2020 |title=Shake Shack Returns $10 Million in Relief Funds and Asks That Small Businesses Be Given More Access |url=https://www.theroot.com/shake-shack-returns-10-million-in-relief-funds-and-asks-that-small-businesses-be-given-more-access |url-status=live |access-date=16 March 2026 |website=The Root}}</ref> Shake Shack applied for the Paycheck Protection Program, receiving $10 million, and weeks later, firing over 1,000 employees.<ref>{{Cite web |last=Koenig |first=Ronnie |date=20 April 2020 |title=After big companies face backlash over loans, Shake Shack returns $10 million |url=https://www.today.com/food/after-big-companies-face-backlash-over-loans-shake-shack-returns-t179269 |url-status=live |access-date=16 March 2026 |website=Today}}</ref> The company received huge amount of backlash for receiving loans that smaller businesses struggled to obtain. On April 20, Shake Shack would announce they're returning the $10 million loan, citing they are "fortunate to now have access to capital that others do not" and "urge Congress to ensure that all restaurants no matter their size have equal ability to get back on their feet and hire back their teams." Additionally, they also criticized the program, saying it was confusing, "unidentified", and saying they had no idea funds would run out in two weeks.<ref>{{Cite web |last=Garutti |first=Randy |date=20 April 2020 |title=Shake Shack is returning its PPP Loan. Here’s why: |url=https://www.linkedin.com/pulse/shake-shack-returning-its-ppp-loan-heres-why-randy-garutti/ |url-status=live |archive-url=https://web.archive.org/web/20200421105710/https://www.linkedin.com/pulse/shake-shack-returning-its-ppp-loan-heres-why-randy-garutti/ |archive-date=21 April 2020 |access-date=16 March 2026 |website=LinkedIn}}</ref> However, two days earlier before the announcement, Shake Shack announced raising $150 million in an equity offering.<ref>{{Cite web |last=Concepcion |first=Summer |date=20 April 2020 |title=Shake Shack Hands Back $10 Million Loan After Small Biz Program Runs Out Of Funds |url=https://talkingpointsmemo.com/news/shake-shack-return-loan-paycheck-protection-program |url-status=live |access-date=16 March 2026 |website=Talking Points Memo}}</ref><ref>{{Cite web |last=Collman |first=Ashley |date=20 April 2020 |title=Shake Shack received, then returned, $10 million in coronavirus stimulus funding after being criticized for taking money meant for struggling small businesses |url=https://www.businessinsider.com/shake-shack-returns-govt-coronavirus-loan-criticism-small-businesses-2020-4 |url-status=live |access-date=16 March 2026 |website=Business Insider}}</ref><ref name=":0" />

===Adding Hidden Fees for Delivery Orders===
Plaintiff Aviva Copaken originally filed a legal complaint in 2024 December 16, however the complaint turned into a class action lawsuit against Shake Shack on February 27, 2025.<ref>{{Cite web |last=Jennings |first=Lisa |date=5 March 2025 |title=Shake Shack sued for not adequately disclosing delivery fees in California |url=https://www.restaurantbusinessonline.com/operations/shake-shack-sued-not-adequately-disclosing-delivery-fees-california |url-status=live |access-date=16 March 2026 |website=Restaurant Business}}</ref> The lawsuit alleges Shake Shack added undisclosed hidden fees on delivery and mobile orders labeled "Courier fees" and "Service fees' to customers orders at the last minute, adding that it only shows the hidden fees at the final payment screen.<ref>{{Cite web |first= |date=6 June 2025 |title=Shake Shack’s illegal hidden fees. |url=https://evilcorporations.com/shake-shack-lawsuit-hidden-fees-drip-pricing/ |url-status=live |access-date=16 March 2026 |website=Evil Corporations}}</ref><ref>{{Cite web |last=Mehorter |first=Kelly |date=5 March 2025 |title=Shake Shack Lawsuit Filed Over Allegedly Hidden Service, Delivery Fees Online |url=https://www.classaction.org/news/shake-shack-lawsuit-filed-over-allegedly-hidden-service-delivery-fees-online |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref> The lawsuit has not come to a result yet as of March 2026.
==Products==
{{Ph-C-P}}

==See also==

*[[Sonic]]
*[[Arby's]]
*[[Wendy's]]

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Sonic

2026-03-17T21:33:07Z

Mr Pollo:

{{Incomplete}}
{{CompanyCargo
|Founded=1953-06-18
|Industry=Food
|Logo=Sonic Corporation Logo.png
|ParentCompany=Inspire Brands
|Type=Subsidiary
|Website=http://sonicdrivein.com/
|Description=SONIC!@
}}[[wikipedia:Sonic_Drive-In|Sonic Corporation]] is (you guessed it) also a company =)

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===Malware attack (2017)===
{{Main|link to the main CR Wiki article}}

On September 16, KrebonSecurity disclosed that Sonic suffered a data breach on its Point of sales systems, exposing an estimate 5 millions of customers financial information are being sold on a website called Joker’s Stash.<ref>{{Cite web |date=26 September 2017 |title=Breach at Sonic Drive-In May Have Impacted Millions of Credit, Debit Cards |url=https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ |url-status=live |archive-url=https://web.archive.org/web/20180211195243/https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ |archive-date=11 February 2018 |access-date=16 March 2026 |website=KrebsOnSecurity}}</ref> A few days later, the blog got traction on social media, with major new outlets covering the leak.<ref>{{Cite web |date=28 September 2017 |title=Data breach at Sonic restaurants could affect millions of customers |url=https://www.youtube.com/watch?v=Uu7mZYYWM8c |url-status=live |access-date=16 March 2026 |website=Youtube}}</ref> The company issued a public response on its website on October 4, acknowledging the breach and offering affected customers 24 months fraud protection until December 24, 2017.<ref>{{Cite web |date=4 October 2017 |title=SONIC Drive-In: Notice of Payment Card Breach |url=https://ir.sonicdrivein.com/releasedetail.cfm?releaseid=1042818 |url-status=dead |archive-url=https://web.archive.org/web/20171015010107/https://ir.sonicdrivein.com/releasedetail.cfm?releaseid=1042818 |archive-date=15 October 2017 |access-date=16 March 2026 |website=Sonic Drive In}}</ref>

The company faced 12 lawsuits from customers because of this incident, alleging the company's failure to implement up to date security practices and disclosing the incidents to customers.<ref>{{Cite web |date=12 February 2018 |title=IN THE UNITED STATES DISTRICT COURT FOR THE NORTHERN DISTRICT OF OHIO EASTERN DIVISION AT CLEVELAND |url=https://www.ohnd.uscourts.gov/sites/ohnd/files/2807-26.pdf |url-status=live |archive-url=https://web.archive.org/web/20201020020507/https://www.ohnd.uscourts.gov/sites/ohnd/files/2807-26.pdf |archive-date=20 October 2020 |access-date=16 March 2026 |website=ohnd.uscourts.gov}}</ref><ref>{{Cite web |last=Rizzi |first=Corrado |date=29 September 2017 |title=Sonic Hit with Class Action Almost Immediately After Data Breach Announcement |url=https://www.classaction.org/news/sonic-hit-with-class-action-almost-immediately-after-data-breach-announcement |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=15 November 2017 |title=Sonic Facing Another Class Action in the Wake of Data Breach |url=https://www.classaction.org/news/sonic-facing-another-class-action-in-the-wake-of-data-breach |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=5 October 2017 |title=Sonic Corp. Facing Third Lawsuit Over Recent Data Breach |url=https://www.classaction.org/news/sonic-corp-facing-third-lawsuit-over-recent-data-breach |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |last=Shaak |first=Erin |date=19 December 2017 |title=Sonic Data Breach Sparks Another Class Action |url=https://www.classaction.org/news/sonic-data-breach-sparks-another-class-action |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref> On October 2018, a $4.3 million settlement was reached.<ref>{{Cite web |last=Spicer |first=Christina |date=15 October 2018 |title=$4.3M Sonic Data Breach Class Action Settlement Reached |url=https://topclassactions.com/lawsuit-settlements/lawsuit-news/4-3m-sonic-data-breach-class-action-settlement-reached/ |url-status=live |access-date=16 March 2026 |website=Top Class Action}}</ref> In May 2022, a $5.4 settlement was reached, requiring sonic pay $3

million to reimburse financial institutions, and $1 or $1.50 for each payment card reissued or involved.<ref>{{Cite web |last=Heisig |first=Eric |date=7 October 2022 |title=Judge Signals Approval For Sonic's Data Breach Settlement |url=https://www.bfvlaw.com/wp-content/uploads/2022/10/Judge-Signals-Approval-For-Sonics-Data-Breach-Settlement-Law360.pdf |url-status=live |access-date=16 March 2026 |website=Law360}}</ref>[[File:Plaintiff messages in Sonic 2020 lawsuit.png|thumb|Plaintiff messages in Sonic 2020 lawsuit.]]

===Sonic Spam Messages===

====2020 Lawsuit====
On October 21, Plaintiff Danny Collins filed a class action lawsuit against Sonic, alleging the company repeatedly sent her advertising messages even after opting out by replying "Stop". The Plantiff seeks $500 or $1500 for each unsolicited marketing messages sent to consumers.<ref>{{Cite web |last=Rizzi |first=Corrado |date=22 October 2020 |title=Sonic Drive-In Hit with Class Action in Oklahoma Over Alleged Spam Texts |url=https://www.classaction.org/news/sonic-drive-in-hit-with-class-action-in-oklahoma-over-alleged-spam-texts |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><ref>{{Cite web |date=27 October 2020 |title=Sonic TCPA Lawsuit & Fast Food Telemarketing Violations |url=https://thelyonfirm.com/blog/sonic-tcpa-lawsuit/ |url-status=live |access-date=16 March 2026 |website=The Lyon Firm}}</ref> As of March 2026, the case is still in progress.
====2023 Lawsuit====
On January 11, a customer from Florida filed a class action lawsuit over unsolicited marketing text sent by the company. Since July 1, 2021 till December 2022, the plaintiff received marketing messages without prior consent, with one of the messages reading;<ref>{{Cite web |last=Mehorter |first=Kelly |date=13 January 2023 |title=Class Action Alleges Sonic Drive-In Sent Illegal Spam Texts |url=https://www.classaction.org/news/class-action-alleges-sonic-drive-in-sent-illegal-spam-texts |url-status=live |access-date=16 March 2026 |website=ClassAction}}</ref><blockquote>Today only at SONIC: $0.99 Small Mozzarella Sticks! Deal

auto-applies in the app & at participating drive-ins 12/15. Lmt

5. +tax. Txt STOP to end</blockquote>As of May 2026, the case is still in progress.

====2025 Lawsuit====
On March 4, a lawsuit was filed against Sonic for sending marketing text to customers without consent. The plaintiff claimed he was on the registry to not receive marketing text, however on March 6, 11, 13, 15, and 20, the company sent him marketing messages. Additionally, the plaintiff claims to have never had any business relationships with them.<ref>{{Cite web |last=Landis |first=Blake |date=6 March 2025 |title=FROM CORN DOGS TO COURTROOMS: Sonic’s Texts Might Cost More Than a Combo Meal |url=https://natlawreview.com/article/corn-dogs-courtrooms-sonics-texts-might-cost-more-combo-meal |url-status=live |access-date=16 March 2026 |website=The National Law Review}}</ref> The lawsuit was dismissed on September 29, 2025.

==Products==
{{Ph-C-P}}

==See also==

*[[Subway]]
*[[Popeyes]]

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Category:Sonic

2026-03-17T21:32:54Z

Mr Pollo: Created page with "Category:Food and drink companies Category:Fast food"

[[Category:Food and drink companies]]
[[Category:Fast food]]

Halfords Limited

2026-03-17T21:32:08Z

Mr Pollo:

{{Incomplete|Issue 1=needs company cargo}}
'''Halfords Limited''' is a UK-based automotive and cycling retailer and services
provider, operating over 400 retail stores and 600+ autocentres across the United
Kingdom.<ref name="halfords-about">{{Cite web|url= https://www.halfords.com/help-and-advice/customer-services/policies-and-customer-security/terms-and-conditions/terms-and-conditions/terms-and-conditions.html| archiveurl = https://web.archive.org/web/20260317124453/https://www.halfords.com/help-and-advice/customer-services/policies-and-customer-security/terms-and-conditions/terms-and-conditions/terms-and-conditions.html| archivedate = 2026-03-17| title= Terms and Conditions| publisher = Halfords| accessdate = 2026-03-16}}</ref> Through its subsidiaries — including Halfords Mobile
Expert, Tyres on the Drive, National Tyres, and McConechy's — it offers mobile and
fixed-location tyre fitting, vehicle servicing, and MOT services.

== Consumer-impact summary ==

=== Warranty terms ===

Halfords sells add-on warranties at the point of sale during mobile fitting
appointments. Published warranty terms contain restrictions that are not disclosed
to customers in the checkout, including a requirement that the Extended Tyre Warranty
can only be redeemed at fixed garages — not via the mobile service through which it
is sold. This has implications under the [[Consumer Rights Act 2015]] regarding
unfair terms and the transparency and prominence requirements.

== Incidents ==

This is a list of all consumer-protection incidents this company is involved in.

=== Tyre warranty sold via mobile fitting, redeemable only at fixed garages (2026) ===

:''Main article: [[Tyre warranty sold via mobile fitting, redeemable only at fixed garages]]''

Halfords sells an Extended Tyre Warranty during mobile tyre fitting bookings, labelling
it as a "Mobile Fitting" product in the checkout with no disclosure that it cannot be
redeemed via the same mobile service. Halfords' own terms state the warranty may only
be redeemed at fixed garages and autocentres, leaving customers with an undrivable
vehicle and no mobile redemption route.

== See also ==

* [[Consumer Rights Act 2015]]

== References ==
{{Reflist}}

[[Category:Halfords Limited]]

Halfords Limited

2026-03-17T21:31:08Z

Mr Pollo:

{{Incomplete|Issue 1=needs company cargo}}
'''Halfords Limited''' is a UK-based automotive and cycling retailer and services
provider, operating over 400 retail stores and 600+ autocentres across the United
Kingdom.<ref name="halfords-about"/> Through its subsidiaries — including Halfords Mobile
Expert, Tyres on the Drive, National Tyres, and McConechy's — it offers mobile and
fixed-location tyre fitting, vehicle servicing, and MOT services.

== Consumer-impact summary ==

=== Warranty terms ===

Halfords sells add-on warranties at the point of sale during mobile fitting
appointments. Published warranty terms contain restrictions that are not disclosed
to customers in the checkout, including a requirement that the Extended Tyre Warranty
can only be redeemed at fixed garages — not via the mobile service through which it
is sold. This has implications under the [[Consumer Rights Act 2015]] regarding
unfair terms and the transparency and prominence requirements.

== Incidents ==

This is a list of all consumer-protection incidents this company is involved in.

=== Tyre warranty sold via mobile fitting, redeemable only at fixed garages (2026) ===

:''Main article: [[Tyre warranty sold via mobile fitting, redeemable only at fixed garages]]''

Halfords sells an Extended Tyre Warranty during mobile tyre fitting bookings, labelling
it as a "Mobile Fitting" product in the checkout with no disclosure that it cannot be
redeemed via the same mobile service. Halfords' own terms state the warranty may only
be redeemed at fixed garages and autocentres, leaving customers with an undrivable
vehicle and no mobile redemption route.

== See also ==

* [[Consumer Rights Act 2015]]

== References ==

<references>
<ref name="halfords-about">{{Cite web
| url = https://www.halfords.com/help-and-advice/customer-services/policies-and-customer-security/terms-and-conditions/terms-and-conditions/terms-and-conditions.html
| archiveurl = https://web.archive.org/web/20260317124453/https://www.halfords.com/help-and-advice/customer-services/policies-and-customer-security/terms-and-conditions/terms-and-conditions/terms-and-conditions.html
| archivedate = 2026-03-17
| title = Terms and Conditions
| publisher = Halfords
| accessdate = 2026-03-16
}}</ref>
</references>

[[Category:Organizations]]
[[Category:Halfords Limited]]

Disboard

2026-03-17T21:30:05Z

Mr Pollo:

{{CompanyCargo
|Founded=2018
|Industry=Social media service
|Logo=Disboard logo.png
|Type=Private
|Website=https://disboard.org/
}}
{{Stub}}
'''Disboard''' is a public [[Discord]] server list that allows users to share Discord server invites using their Discord bot. Through the Disboard bot users can make invites for their server and "bump" the server on Disboards server list.

==Consumer impact summary==
===User freedom===
* Users have to follow Discords Terms of Service.<ref name="Guidelines">https://disboard.org/site/guidelines</ref>
* Users have to follow their local laws.<ref name="Guidelines"></ref>
* Users cannot use swear words or NSFW content in server profile pictures, descriptions or names.<ref name="Guidelines"></ref>
* Automated use of the Disboard server is disallowed, which includes using alt accounts.<ref name="Guidelines"></ref>
* Disboard decides on the removal of servers that are empty or are redirects to other servers. This decision making includes the decision on what is considered a content lacking server.<ref name="Guidelines"></ref>
* NSFW servers have to be tagged NSFW on the invite page.<ref name="Guidelines"></ref>
* Rewarding users for bumping your server or leaving reviews is disallowed.<ref name="Guidelines"></ref>

===User privacy===
* Disboard does not sell any data related to users according to their Terms of Service.<ref name="TOS">https://disboard.org/site/tos</ref>
* Collected data includes: All user activity on Disboard and information returned by Discords API, which includes things like profile pictures and account names. E-mail addresses are however not saved by the service.<ref name="TOS"></ref>
* Disboard does not contact users about changes to the Terms of Service, stating that users need to keep track of the TOS changes themselves.<ref name="TOS"></ref>
* Disboard follows through with "The right to restrict processing" requests and with "The right to erasure" related requests.<ref name="TOS"></ref>

===Business model===
* Disboard makes money through selling advertisement spots on their websites.<ref name="TOS"></ref>

===Market control===

* Disboard has plenty of competitors and as such does not have total market control.

==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===Server listings for CSAM servers (''2021—2023'')===
From 2021 to 2023 Disboard had a platform-wide moderation problem related to listings for servers advertising or containing CSAM content. During this time period, search queries related to either adult material or to CSAM slang would return pages upon pages of servers all with the same names and server icons that all contained CSAM.

On the 14th of January, 2023, the YouTuber known as iamLucid made a video covering the CSAM listings, using info from a documented handed to him by an anonymous fan.<ref>https://www.youtube.com/watch?v=8ANZU4liRQU</ref> A couple of weeks after his video went live his video had gained over a million views, but more importantly, the server listings users had been complaining to Disboard about for years were quickly all removed and blocked. With no servers like them popping up after iamLucid's video.

The document in question was created by two Disboard users with the screen-name "Evan" and "Joe". According to them, they had contacted the Disboard moderators in 2022 and reported their findings. To which the moderators responded by saying they were working on the issue. Until iamLucids viral video, obvious violations like the "taboo" and "S2R" tags were not dealt with. Even though these violations were reported dozens of times to Disboard.<ref name="Document">https://docs.google.com/document/d/1t3h4hS1D6-YpXMaYQbWxcVk8VXq675aHTiO8soAP6NI</ref>

Whilst these server listings were on Disboard, the company gained ad revenue from people taking a look at said listings. With these servers having hundreds of members joining per hour through Disboard.<ref name="Document"></ref>

==See also==
* [[Discord]]

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Wegmans

2026-03-17T21:29:26Z

Mr Pollo:

{{StubNotice}}{{CompanyCargo
|Founded=1916-01-30
|Industry=Grocery
|Logo=Wegmans.jpg
|Type=Private
|Website=https://www.wegmans.com
|Description=American supermarket chain with 114 stores in nine states and the District of Columbia.
|CompanyAlias=Rochester Fruit and Vegetable Company}}[[wikipedia:Wegmans|Wegmans]] is an American supermarket chain headquartered in Rochester, NY, with stores across the east coast. With over 110 locations and over 54,000 employees, they make $12.5 billion in annual sales<ref>{{Cite web |date=2026-03-16 |title=About Us - Wegmans |url=https://www.wegmans.com/about-us |url-status=live |archive-url=https://ghostarchive.org/archive/pMt3J |archive-date=2026-03-16 |access-date=2026-03-16 |website=Wegmans}}</ref>.

In January 2026, several Wegmans stores in New York City (NYC) have implemented facial recognition systems. As of January 12, many of the implementation details of this data collection are unclear. Stores outside of NYC may have facial recognition systems that are undisclosed, and little information is known about how long biometric data is retained and how it is being secured.

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
{{Ph-C-Inc}}

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].
===Biometric data collection (''2024-2026'')===
{{Main|Wegmans collects customers' biometric data}}
Short summary of the incident (could be the same as the summary preceding the article).
===Example incident two (''date'')===
...

==Products==
{{Ph-C-P}}

==See also==
{{Ph-C-SA}}

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Wegmans

2026-03-17T21:28:41Z

Mr Pollo:

{{StubNotice}}{{CompanyCargo
|Founded=1916-01-30
|Industry=Grocery
|Logo=Wegmans.jpg
|Type=Private
|Website=https://www.wegmans.com
|Description=American supermarket chain with 114 stores in nine states and the District of Columbia.
|CompanyAlias=Rochester Fruit and Vegetable Company}}[[wikipedia:Wegmans|Wegmans]] is an American supermarket chain headquartered in Rochester, NY, with stores across the east coast. With over 110 locations and over 54,000 employees, they make $12.5 billion in annual sales<ref>{{Cite web |date=2026-03-16 |title=About Us - Wegmans |url=https://www.wegmans.com/about-us |url-status=live |archive-url=https://ghostarchive.org/archive/pMt3J |archive-date=2026-03-16 |access-date=2026-03-16 |website=Wegmans}}</ref>.

In January 2026, several Wegmans stores in New York City (NYC) have implemented facial recognition systems. As of January 12, many of the implementation details of this data collection are unclear. Stores outside of NYC may have facial recognition systems that are undisclosed, and little information is known about how long biometric data is retained and how it is being secured.

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
{{Ph-C-Inc}}

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].
===Biometric data collection (''2024'')===
{{Main|Wegmans collects customers' biometric data}}
Short summary of the incident (could be the same as the summary preceding the article).
===Example incident two (''date'')===
...

==Products==
{{Ph-C-P}}

==See also==
{{Ph-C-SA}}

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Happy Bar & Grill biometric surveillance tool development

2026-03-17T21:27:36Z

Mr Pollo:

Happy Bar & Grill, a Bulgarian restaurant chain, faced public backlash surrounding the discovery of a vendor product page for an AI facial recognition system which had been developed by [[IP Biometrix]], that biometrically profiles customers and had been designed for use in Happy Bar & Grill restaurants. The system appeared to have the capabilities to track physical attributes, infer ethnicity categories, and analyse emotional states of customers, as well as monitor the amount of time employees spent smiling.<ref name="ip-biometrix" /> Happy, the parent company of Happy Bar & Grill, later acknowledged considering procurement of the system in late 2023 before rejecting it on 14 December 2023, and asserted that the system was never deployed in any of their restaurants.<ref name="mobilebulgaria" />

==Background==
Happy Bar & Grill is a Bulgarian restaurant chain operating multiple locations across Bulgaria, Romania, Spain, and the United Kingdom.<ref name="happy-bg" /> IP Biometrix's public portfolio previously listed the chain as a customer and detailed its system, including data seemingly taken from a restaurant, though whether this represents live deployment or the use of prerecorded training data is unknown.<ref name="ip-biometrix" /> This was found by a Consumer Rights Wiki user around 4 March 2026. According to an official statement released on 12 March 2026, the chain received an offer for an AI-powered facial recognition system from Bulgarian security vendor IP Biometrix in 2023. The company stated the system was assessed between September and December 2023<ref name="burrata-bg" /> before being officially rejected on 14 December 2023.<ref name="happy-statement" />

==Biometric surveillance capabilities==
[[File:Customer Analysis Report.png|thumb|300px|''Demographic Data (Age and Gender distribution) generated by the AI facial recognition system'']]
IP Biometrix's portfolio page describes the system processing both employees and customers. A sample image shows multiple individuals labelled as "Subject 6053," "6054," and "6055" with extensive biometric attributes tracked. Displayed percentages (e.g., ethnicity scores) appear to represent AI confidence levels regarding specific selected individuals, rather than aggregate counts of demographics within the venue.<ref name="ip-biometrix" /> Tracked attributes include:

*Physical features: glasses, dark glasses, beard, moustache, blink, mouth open, mask presence, "face quality"
*Ethnicity classifications: white, black, Asian, Hispanic, Indian, Arabian
*Emotional states: neutral, anger, contempt, disgust, fear, and others

IP Biometrix's portfolio page was captured by the Internet Archive on 2 January 2026. Demonstration images within the portfolio contain filenames dated to at least 9 November 2024 (e.g., "Screenshot-2024-11-09-120029.png"), however the images may have been prepared at an earlier time.<ref name="ip-biometrix" />

Patrons entering Happy Bar & Grill received no visible signage at entrances or within dining areas informing them that their facial biometrics were being captured, analysed, or stored during the testing period{{CitationNeeded}}. Happy's published privacy policy makes no mention of facial recognition, biometric processing, or AI surveillance systems in restaurants.<ref name="happy-privacy" /> This is consistent with their representation that the system has never been deployed.

[[File:AI Surveillance Dashboard.png|thumb|center|500px|''Real-Time Biometric Profiling of Customers (Subjects 6053–6055), Including Ethnicity Inference and Emotion Detection (Burrata Italiana Varna, Varna, Bulgaria)'']]
==Legal context==
Under the EU General Data Protection Regulation (GDPR), facial recognition constitutes processing of biometric data—a "special category" of personal data requiring explicit consent or another narrow legal basis under Article 9.<ref name="gdpr-article9" /> Inferring ethnicity and emotional states triggers additional restrictions as these reveal "racial or ethnic origin" and constitute sensitive psychological profiling. The absence of transparent notice before data collection violates GDPR Articles 13–14, while processing customers' biometrics for staff performance monitoring lacks a proportionate legal basis under Articles 6 and 9.<ref name="gdpr-article9" /> Under Bulgarian national guidance, the Commission for Personal Data Protection (CPDP) has stated that processing biometric data in shops and restaurants for the purpose of analyzing customer behavior, gender, or age cannot be based on "legitimate interest." The CPDP emphasizes that placing information signs is insufficient to achieve "explicit consent."<ref name="cpdp-opinion" />

==Abuse report==
On 12 March 2026, Happy Bar & Grill filed an abuse complaint against Consumer Rights Wiki, attempting to pull down the website. Some have criticized the decision, believing that the controversy [[wikipedia:Streisand_effect|could create more publicity]] over their business practises.<ref name="rossmann">{{Cite web |last=Rossmann |first=Louis |date=2026-03-13 |title=Nice try... |url=https://www.youtube.com/watch?v=2D7hdJF2AwU |access-date=14 Mar 2026}}</ref>

==Company's response==
On 12 March 2026, Happy Bar & Grill issued an official statement addressing the allegations. The company categorically denied current use of the system, stating that no such software or technology is currently used in Happy restaurants. They acknowledged receiving an offer from GI Mobility Services (linked to IP Biometrix) in 2023 and confirmed testing occurred between September and December 2023. The company stated they officially rejected the proposal on 14 December 2023, stating that the solution was unnecessary for their operations.<ref name="happy-statement" />

Happy contacted the administrators and hosting provider of the Consumer Rights Wiki, requesting a complete removal and retraction of the article<ref name="mobilebulgaria" /><ref name="rossmann" />. The article initially stated that evidence supported that widespread implementation of the system had occurred, however this has since been changed. IP Biometrix removed the portfolio page showcasing the Happy Bar & Grill implementation during a site renovation prior to March 2026. The content is now preserved through the Internet Archive's Wayback Machine capture from 2 January 2026.<ref name="ip-biometrix" />

==Community response==
Consumer awareness of the surveillance system gained traction on 11 March 2026, following a post on the subreddit r/bulgaria<ref name="r/bulgaria post">{{cite web|title=Biometric data collection cameras in Happy|url=https://www.reddit.com/r/bulgaria/comments/1rqxn90/%D0%BA%D0%B0%D0%BC%D0%B5%D1%80%D0%B8_%D0%B7%D0%B0_%D1%81%D1%8A%D0%B1%D0%B8%D1%80%D0%B0%D0%BD%D0%B5_%D0%BD%D0%B0_%D0%B1%D0%B8%D0%BE%D0%BC%D0%B5%D1%82%D1%80%D0%B8%D1%87%D0%BD%D0%B8_%D0%B4%D0%B0%D0%BD%D0%BD%D0%B8_%D0%B2_%D1%85%D0%B5%D0%BF%D0%B8/ |access-date=14 March 2026}}</ref>, and the publication of a number of news articles<ref name="mobilebulgaria" /><ref name="happy-statement" /><ref name="kaldata" />. Much of the community response reflects the initial statements by this article that widespread deployment of the system had occurred.

Additional concerns have been raised following scrutiny of IP Biometrix's other projects, including camera systems at the University of National and World Economy (UNWE) which shared the implementation on their Instagram account<ref>{{Cite web |date=16 Dec 2025 |title=📣🎓Students be wary‼️ 🆔checks from this session |url=https://www.instagram.com/reel/DSUYij0jLkY |url-status=live |access-date=14 Mar 2026 |website=Instagram}}</ref>, and their list of partners, which was removed from their website{{CitationNeeded}}.
==References==
<references>
<ref name="ip-biometrix">{{Cite web |title=Face recognition solution for Happy Bar & Grill |url=https://ip-biometrix.com/portfolio/happy-face-recognition/ |website=IP Biometrix |archive-url=https://web.archive.org/web/20260102224149/https://ip-biometrix.com/portfolio/happy-face-recognition/ |archive-date=2 January 2026 |access-date=4 March 2026}}</ref>
<ref name="happy-bg">{{Cite web |title=Happy Bar & Grill |url=https://happy.bg/ |url-status=live |archive-url=https://web.archive.org/web/20260313192141/https://happy.bg/ |archive-date=2026-03-13 |access-date=4 March 2026 |website=happy.bg}}</ref>
<ref name="happy-privacy">{{Cite web |title=Privacy Policy |url=https://happy.bg/en/privacy_policy |url-status=live |archive-url=https://web.archive.org/web/20260313193023/https://happy.bg/en/privacy_policy |archive-date=2026-03-13 |access-date=4 March 2026 |website=happy.bg}}</ref>
<ref name="happy-statement">{{Cite web |title=Official Statement regarding AI camera allegations |url=https://boulevardbulgaria.bg/articles/happy-tvardeniyata-che-verigata-sledi-klientite-si-s-ai-kameri-sa-absolyutno-neverni |archive-url=https://archive.ph/zdiAC |archive-date= 13 March 2026 |website=Boulevard Bulgaria |access-date=12 March 2026}}</ref>
<ref name="gdpr-article9">{{Cite web |title=Regulation (EU) 2016/679, Article 9 |url=https://eur-lex.europa.eu/eli/reg/2016/679/art_9/oj |url-status=live |archive-url=https://web.archive.org/web/20260313212753/https://eur-lex.europa.eu/eli/reg/2016/679/art_9/oj |archive-date=2026-03-13 |access-date=4 March 2026 |website=Regulation - 2016/679 - EN - gdpr - EUR-Lex |publisher=EUR-Lex}}</ref>
<ref name="cpdp-opinion">{{Cite web |title=Statement of the CPDP regarding the use of video surveillance with biometric data |url=https://cpdp.bg/%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%89%D0%B5-%D0%BD%D0%B0-%D0%BA%D0%B7%D0%BB%D0%B4-%D0%BE%D1%82%D0%BD%D0%BE%D1%81%D0%BD%D0%BE-%D0%B8%D0%B7%D0%BF%D0%BE%D0%BB%D0%B7%D0%B2%D0%B0%D0%BD%D0%B5-2/ |url-status=live |archive-url=https://web.archive.org/web/20260313192533/https://cpdp.bg/%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%89%D0%B5-%D0%BD%D0%B0-%D0%BA%D0%B7%D0%BB%D0%B4-%D0%BE%D1%82%D0%BD%D0%BE%D1%81%D0%BD%D0%BE-%D0%B8%D0%B7%D0%BF%D0%BE%D0%BB%D0%B7%D0%B2%D0%B0%D0%BD%D0%B5-2/ |archive-date=2026-03-13 |access-date=11 March 2026 |website=cpdp.bg}}</ref>
<ref name="burrata-bg">{{Cite web |title=Burrata Italiana - About |url=https://burrata.bg/about |url-status=live |archive-url=https://web.archive.org/web/20260313204746/https://burrata.bg/about |archive-date=2026-03-13 |access-date=11 March 2026 |website=burrata.bg}}</ref>
<ref name="kaldata">{{Cite web |author=Zhelev |first=Svetlin |date=12 March 2026 |title=AI cameras in restaurants? A facial recognition and emotion analysis system in a popular Bulgarian chain raises serious questions |url=https://www.kaldata.com/it-%D0%BD%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8/ai-%D0%BA%D0%B0%D0%BC%D0%B5%D1%80%D0%B8-%D0%B2-%D1%80%D0%B5%D1%81%D1%82%D0%BE%D1%80%D0%B0%D0%BD%D1%82%D0%B8%D1%82%D0%B5-%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0-%D0%B7%D0%B0-%D1%80%D0%B0%D0%B7-650764.html |url-status=live |archive-url=https://web.archive.org/web/20260312220545/https://www.kaldata.com/it-%D0%BD%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8/ai-%D0%BA%D0%B0%D0%BC%D0%B5%D1%80%D0%B8-%D0%B2-%D1%80%D0%B5%D1%81%D1%82%D0%BE%D1%80%D0%B0%D0%BD%D1%82%D0%B8%D1%82%D0%B5-%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0-%D0%B7%D0%B0-%D1%80%D0%B0%D0%B7-650764.html |archive-date=2026-03-12 |access-date=13 March 2026 |website=kaldata.com}}</ref>
<ref name="mobilebulgaria">{{Cite web |title=Facial recognition with AI monitors customers and employees in Happy restaurants? (Updated with an opinion from the company) |url=https://mobilebulgaria.com/news/izpolzva-li-happy-bar-grill-litsevo-razpoznavane-s-ai-v-restorantite-si |author=Behar, Mikhail |date=12 March 2026 |website=mobilebulgaria.com |access-date=13 March 2026}}</ref>
</references>
[[Category:2026 incidents]]
[[Category:IP Biometrix]]

Happy Bar & Grill biometric surveillance tool development

2026-03-17T21:27:21Z

Mr Pollo:

Happy Bar & Grill, a Bulgarian restaurant chain, faced public backlash surrounding the discovery of a vendor product page for an AI facial recognition system which had been developed by IP Biometrix, that biometrically profiles customers and had been designed for use in Happy Bar & Grill restaurants. The system appeared to have the capabilities to track physical attributes, infer ethnicity categories, and analyse emotional states of customers, as well as monitor the amount of time employees spent smiling.<ref name="ip-biometrix" /> Happy, the parent company of Happy Bar & Grill, later acknowledged considering procurement of the system in late 2023 before rejecting it on 14 December 2023, and asserted that the system was never deployed in any of their restaurants.<ref name="mobilebulgaria" />

==Background==
Happy Bar & Grill is a Bulgarian restaurant chain operating multiple locations across Bulgaria, Romania, Spain, and the United Kingdom.<ref name="happy-bg" /> IP Biometrix's public portfolio previously listed the chain as a customer and detailed its system, including data seemingly taken from a restaurant, though whether this represents live deployment or the use of prerecorded training data is unknown.<ref name="ip-biometrix" /> This was found by a Consumer Rights Wiki user around 4 March 2026. According to an official statement released on 12 March 2026, the chain received an offer for an AI-powered facial recognition system from Bulgarian security vendor IP Biometrix in 2023. The company stated the system was assessed between September and December 2023<ref name="burrata-bg" /> before being officially rejected on 14 December 2023.<ref name="happy-statement" />

==Biometric surveillance capabilities==
[[File:Customer Analysis Report.png|thumb|300px|''Demographic Data (Age and Gender distribution) generated by the AI facial recognition system'']]
IP Biometrix's portfolio page describes the system processing both employees and customers. A sample image shows multiple individuals labelled as "Subject 6053," "6054," and "6055" with extensive biometric attributes tracked. Displayed percentages (e.g., ethnicity scores) appear to represent AI confidence levels regarding specific selected individuals, rather than aggregate counts of demographics within the venue.<ref name="ip-biometrix" /> Tracked attributes include:

*Physical features: glasses, dark glasses, beard, moustache, blink, mouth open, mask presence, "face quality"
*Ethnicity classifications: white, black, Asian, Hispanic, Indian, Arabian
*Emotional states: neutral, anger, contempt, disgust, fear, and others

IP Biometrix's portfolio page was captured by the Internet Archive on 2 January 2026. Demonstration images within the portfolio contain filenames dated to at least 9 November 2024 (e.g., "Screenshot-2024-11-09-120029.png"), however the images may have been prepared at an earlier time.<ref name="ip-biometrix" />

Patrons entering Happy Bar & Grill received no visible signage at entrances or within dining areas informing them that their facial biometrics were being captured, analysed, or stored during the testing period{{CitationNeeded}}. Happy's published privacy policy makes no mention of facial recognition, biometric processing, or AI surveillance systems in restaurants.<ref name="happy-privacy" /> This is consistent with their representation that the system has never been deployed.

[[File:AI Surveillance Dashboard.png|thumb|center|500px|''Real-Time Biometric Profiling of Customers (Subjects 6053–6055), Including Ethnicity Inference and Emotion Detection (Burrata Italiana Varna, Varna, Bulgaria)'']]
==Legal context==
Under the EU General Data Protection Regulation (GDPR), facial recognition constitutes processing of biometric data—a "special category" of personal data requiring explicit consent or another narrow legal basis under Article 9.<ref name="gdpr-article9" /> Inferring ethnicity and emotional states triggers additional restrictions as these reveal "racial or ethnic origin" and constitute sensitive psychological profiling. The absence of transparent notice before data collection violates GDPR Articles 13–14, while processing customers' biometrics for staff performance monitoring lacks a proportionate legal basis under Articles 6 and 9.<ref name="gdpr-article9" /> Under Bulgarian national guidance, the Commission for Personal Data Protection (CPDP) has stated that processing biometric data in shops and restaurants for the purpose of analyzing customer behavior, gender, or age cannot be based on "legitimate interest." The CPDP emphasizes that placing information signs is insufficient to achieve "explicit consent."<ref name="cpdp-opinion" />

==Abuse report==
On 12 March 2026, Happy Bar & Grill filed an abuse complaint against Consumer Rights Wiki, attempting to pull down the website. Some have criticized the decision, believing that the controversy [[wikipedia:Streisand_effect|could create more publicity]] over their business practises.<ref name="rossmann">{{Cite web |last=Rossmann |first=Louis |date=2026-03-13 |title=Nice try... |url=https://www.youtube.com/watch?v=2D7hdJF2AwU |access-date=14 Mar 2026}}</ref>

==Company's response==
On 12 March 2026, Happy Bar & Grill issued an official statement addressing the allegations. The company categorically denied current use of the system, stating that no such software or technology is currently used in Happy restaurants. They acknowledged receiving an offer from GI Mobility Services (linked to IP Biometrix) in 2023 and confirmed testing occurred between September and December 2023. The company stated they officially rejected the proposal on 14 December 2023, stating that the solution was unnecessary for their operations.<ref name="happy-statement" />

Happy contacted the administrators and hosting provider of the Consumer Rights Wiki, requesting a complete removal and retraction of the article<ref name="mobilebulgaria" /><ref name="rossmann" />. The article initially stated that evidence supported that widespread implementation of the system had occurred, however this has since been changed. IP Biometrix removed the portfolio page showcasing the Happy Bar & Grill implementation during a site renovation prior to March 2026. The content is now preserved through the Internet Archive's Wayback Machine capture from 2 January 2026.<ref name="ip-biometrix" />

==Community response==
Consumer awareness of the surveillance system gained traction on 11 March 2026, following a post on the subreddit r/bulgaria<ref name="r/bulgaria post">{{cite web|title=Biometric data collection cameras in Happy|url=https://www.reddit.com/r/bulgaria/comments/1rqxn90/%D0%BA%D0%B0%D0%BC%D0%B5%D1%80%D0%B8_%D0%B7%D0%B0_%D1%81%D1%8A%D0%B1%D0%B8%D1%80%D0%B0%D0%BD%D0%B5_%D0%BD%D0%B0_%D0%B1%D0%B8%D0%BE%D0%BC%D0%B5%D1%82%D1%80%D0%B8%D1%87%D0%BD%D0%B8_%D0%B4%D0%B0%D0%BD%D0%BD%D0%B8_%D0%B2_%D1%85%D0%B5%D0%BF%D0%B8/ |access-date=14 March 2026}}</ref>, and the publication of a number of news articles<ref name="mobilebulgaria" /><ref name="happy-statement" /><ref name="kaldata" />. Much of the community response reflects the initial statements by this article that widespread deployment of the system had occurred.

Additional concerns have been raised following scrutiny of IP Biometrix's other projects, including camera systems at the University of National and World Economy (UNWE) which shared the implementation on their Instagram account<ref>{{Cite web |date=16 Dec 2025 |title=📣🎓Students be wary‼️ 🆔checks from this session |url=https://www.instagram.com/reel/DSUYij0jLkY |url-status=live |access-date=14 Mar 2026 |website=Instagram}}</ref>, and their list of partners, which was removed from their website{{CitationNeeded}}.
==References==
<references>
<ref name="ip-biometrix">{{Cite web |title=Face recognition solution for Happy Bar & Grill |url=https://ip-biometrix.com/portfolio/happy-face-recognition/ |website=IP Biometrix |archive-url=https://web.archive.org/web/20260102224149/https://ip-biometrix.com/portfolio/happy-face-recognition/ |archive-date=2 January 2026 |access-date=4 March 2026}}</ref>
<ref name="happy-bg">{{Cite web |title=Happy Bar & Grill |url=https://happy.bg/ |url-status=live |archive-url=https://web.archive.org/web/20260313192141/https://happy.bg/ |archive-date=2026-03-13 |access-date=4 March 2026 |website=happy.bg}}</ref>
<ref name="happy-privacy">{{Cite web |title=Privacy Policy |url=https://happy.bg/en/privacy_policy |url-status=live |archive-url=https://web.archive.org/web/20260313193023/https://happy.bg/en/privacy_policy |archive-date=2026-03-13 |access-date=4 March 2026 |website=happy.bg}}</ref>
<ref name="happy-statement">{{Cite web |title=Official Statement regarding AI camera allegations |url=https://boulevardbulgaria.bg/articles/happy-tvardeniyata-che-verigata-sledi-klientite-si-s-ai-kameri-sa-absolyutno-neverni |archive-url=https://archive.ph/zdiAC |archive-date= 13 March 2026 |website=Boulevard Bulgaria |access-date=12 March 2026}}</ref>
<ref name="gdpr-article9">{{Cite web |title=Regulation (EU) 2016/679, Article 9 |url=https://eur-lex.europa.eu/eli/reg/2016/679/art_9/oj |url-status=live |archive-url=https://web.archive.org/web/20260313212753/https://eur-lex.europa.eu/eli/reg/2016/679/art_9/oj |archive-date=2026-03-13 |access-date=4 March 2026 |website=Regulation - 2016/679 - EN - gdpr - EUR-Lex |publisher=EUR-Lex}}</ref>
<ref name="cpdp-opinion">{{Cite web |title=Statement of the CPDP regarding the use of video surveillance with biometric data |url=https://cpdp.bg/%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%89%D0%B5-%D0%BD%D0%B0-%D0%BA%D0%B7%D0%BB%D0%B4-%D0%BE%D1%82%D0%BD%D0%BE%D1%81%D0%BD%D0%BE-%D0%B8%D0%B7%D0%BF%D0%BE%D0%BB%D0%B7%D0%B2%D0%B0%D0%BD%D0%B5-2/ |url-status=live |archive-url=https://web.archive.org/web/20260313192533/https://cpdp.bg/%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%89%D0%B5-%D0%BD%D0%B0-%D0%BA%D0%B7%D0%BB%D0%B4-%D0%BE%D1%82%D0%BD%D0%BE%D1%81%D0%BD%D0%BE-%D0%B8%D0%B7%D0%BF%D0%BE%D0%BB%D0%B7%D0%B2%D0%B0%D0%BD%D0%B5-2/ |archive-date=2026-03-13 |access-date=11 March 2026 |website=cpdp.bg}}</ref>
<ref name="burrata-bg">{{Cite web |title=Burrata Italiana - About |url=https://burrata.bg/about |url-status=live |archive-url=https://web.archive.org/web/20260313204746/https://burrata.bg/about |archive-date=2026-03-13 |access-date=11 March 2026 |website=burrata.bg}}</ref>
<ref name="kaldata">{{Cite web |author=Zhelev |first=Svetlin |date=12 March 2026 |title=AI cameras in restaurants? A facial recognition and emotion analysis system in a popular Bulgarian chain raises serious questions |url=https://www.kaldata.com/it-%D0%BD%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8/ai-%D0%BA%D0%B0%D0%BC%D0%B5%D1%80%D0%B8-%D0%B2-%D1%80%D0%B5%D1%81%D1%82%D0%BE%D1%80%D0%B0%D0%BD%D1%82%D0%B8%D1%82%D0%B5-%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0-%D0%B7%D0%B0-%D1%80%D0%B0%D0%B7-650764.html |url-status=live |archive-url=https://web.archive.org/web/20260312220545/https://www.kaldata.com/it-%D0%BD%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8/ai-%D0%BA%D0%B0%D0%BC%D0%B5%D1%80%D0%B8-%D0%B2-%D1%80%D0%B5%D1%81%D1%82%D0%BE%D1%80%D0%B0%D0%BD%D1%82%D0%B8%D1%82%D0%B5-%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0-%D0%B7%D0%B0-%D1%80%D0%B0%D0%B7-650764.html |archive-date=2026-03-12 |access-date=13 March 2026 |website=kaldata.com}}</ref>
<ref name="mobilebulgaria">{{Cite web |title=Facial recognition with AI monitors customers and employees in Happy restaurants? (Updated with an opinion from the company) |url=https://mobilebulgaria.com/news/izpolzva-li-happy-bar-grill-litsevo-razpoznavane-s-ai-v-restorantite-si |author=Behar, Mikhail |date=12 March 2026 |website=mobilebulgaria.com |access-date=13 March 2026}}</ref>
</references>
[[Category:2026 incidents]]
[[Category:IP Biometrix]]

IP Biometrix

2026-03-17T21:26:11Z

Mr Pollo:

{{StubNotice}}{{CompanyCargo
|Founded=2023
|Industry=Security
|Logo=IPBio.jpg
|Type=Private
|Website=https://ip-biometrix.com
|Description=IP Biometrix is a biometric technology solutions, with a focus on facial recognition and IoT integration.
}}
'''IP Biometrix''' is a biometric technology company, specializing in facial recognition technology and IoT integration, which offers security products for business, home, and public places<ref name=":0">{{Cite web |date=2026-03-16 |title=IP Biometrix - About |url=https://ip-biometrix.com/about/ |url-status=live |archive-url=https://ghostarchive.org/archive/sYPAK |archive-date=2026-03-16 |access-date=2026-03-16 |website=IP Biometrix}}</ref>.

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
{{Ph-C-Inc}}

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].
===Happy Bar & Grill surveillance (''2023'')===
{{Main|Happy Bar & Grill biometric surveillance tool development}}
Short summary of the incident (could be the same as the summary preceding the article).
===Example incident two (''date'')===
...

==Products==
{{Ph-C-P}}

==See also==
{{Ph-C-SA}}

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

KYC

2026-03-17T21:24:43Z

Mr Pollo:

{{Delete|irrelevant to the wiki in its current state (i.e. copied from Wikipedia)}}
Know your customer or know your client (KYC) guidelines and regulations in financial services require professionals to verify the identity, suitability, and risks involved with maintaining a business relationship with a customer. <ref>{{Cite web |title=Know your customer Wikipedia.org |url=https://en.wikipedia.org/wiki/Know_your_customer}}</ref>

ZFP Group

2026-03-17T21:23:51Z

Mr Pollo:

{{Delete|no references, no content}}
{{CompanyCargo
|Founded=1995
|Industry=Finance
|Logo=ZFP logo.webp
|ParentCompany=ZPF Akademie s.r.o.
|Website=https://www.zfpgroup.cz/
|Description=ZFP Akademie s.r.o. (ZFP Group) is a company that operates partly on the airplane principle.
}}
{{Ph-C-Int}}

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
{{Ph-C-Inc}}

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].
===Example incident one (''date'')===
{{Main|link to the main CR Wiki article}}
Short summary of the incident (could be the same as the summary preceding the article).
===Example incident two (''date'')===
...

==Products==
{{Ph-C-P}}

==See also==
{{Ph-C-SA}}

==References==
{{Reflist}}

[[Category:{{PAGENAME}}]]
[[Category:Companies]]

Yahoo!

2026-03-17T21:23:25Z

Mr Pollo:

{{Stub}}
{{CompanyCargo
|Founded=1994-01
|Industry=Web service
|Type=Subsidiary
|Logo=Yahoo!.svg
|Website=https://www.yahoo.com
|Description=Yahoo! is a company that makes internet-based products.
}}
Yahoo! is a company that makes internet-based products.

==Consumer-impact summary==
{{Ph-C-CIS}}
* '''User privacy''': Poor; third-party AI has been forced to be used.
==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].
===Mandatory use of AI on all consumer services and content===
{{Main|Yahoo! mandatory use of AI on all consumer services and content}}
Yahoo! implemented a change to their Terms of Service stipulating their mandatory use of third-party AI on customer data, specifically including e-mail and account content.
===Example incident two (''date'')===
...

==Products==
{{Ph-C-P}}

==See also==
{{Ph-C-SA}}

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

File:Yahoo!.svg

2026-03-17T21:23:01Z

Mr Pollo: https://logos.fandom.com/wiki/Yahoo!?file=Yahoo%21_2019.svg#2019%E2%80%93present Category:Logo

== Summary ==
https://logos.fandom.com/wiki/Yahoo!?file=Yahoo%21_2019.svg#2019%E2%80%93present
[[Category:Logo]]
== Licensing ==
{{Fairuse}}

Yahoo!

2026-03-17T21:22:08Z

Mr Pollo:

{{Stub}}
{{CompanyCargo
|Founded=1994-01
|Industry=Web service
|Type=Subsidiary
|Logo=Yahoo!.svg
|Website=yahoo.com
|Description=Yahoo! is a company that makes internet-based products.
}}
Yahoo! is a company that makes internet-based products.

==Consumer-impact summary==
{{Ph-C-CIS}}
* '''User privacy''': Poor; third-party AI has been forced to be used.
==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].
===Mandatory use of AI on all consumer services and content===
{{Main|Yahoo! mandatory use of AI on all consumer services and content}}
Yahoo! implemented a change to their Terms of Service stipulating their mandatory use of third-party AI on customer data, specifically including e-mail and account content.
===Example incident two (''date'')===
...

==Products==
{{Ph-C-P}}

==See also==
{{Ph-C-SA}}

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Web cookie

2026-03-17T21:21:37Z

Mr Pollo:

{{Incomplete}}
A [[wikipedia:HTTP_cookie|web cookie]], is a small chunk(s) of data served(shared) to the client(browser) that can be used for a variety of purposes. One of the most common being a website login identifier that serves a session cookie that is able to be sent back to the server to prevent needing to authenticate numerous times. The web cookie, has a bunch of other common names such as "[[wikipedia:HTTP|HTTP]] cookie" (when set via that protocol), "browser cookie" (more general, can be set via [[JavaScript]])<ref>{{Cite web |date=2025-11-30 |title=Document: cookie property |url=https://developer.mozilla.org/en-US/docs/Web/API/Document/cookie |url-status=live |archive-url=https://web.archive.org/web/20260310000519/https://developer.mozilla.org/en-US/docs/Web/API/Document/cookie |archive-date=2026-03-10 |access-date=2026-03-15 |website=Mozilla Developer Network}}</ref>, and "cookie". For the sake of simplicity this article will be using the term "cookie" to represent all types of cookies.

==How it works==
When a user (person) visits a website, you may be first prompted with user preferences such as what data can be used with the site. That information is likely stored by your browser agent as a cookie so that information or popup will not show again. Cookies are often a good practice, as it offers clients a better experience when navigating their site when visiting. Of course there are a bunch of other cookies that do exist, but for now we will focus on a few categories that these cookies fall under
{| class="wikitable"
|+
!Cookie Type
!Use Case
!Risk
|-
|Form Cookie
|When using a site you may be required to fill out a form field, that information can be stored by your [[wikipedia:User_agent|user-agent]] (UA) when making a purchases or even renewing your licence, making the experience more streamlined the next time you plan on making additional purchases on a website like that.
|Depending on implementation, such as if cookies are not properly encrypted by your browser and site, your using you may be at risk if a malicious actor decides to swipe your cookies, which could also include password and saved payment information
|-
|3rd Party Cookie
|These cookies can be used when companies have different registered domains or transferring the user, to prevent annoying information duplication, or joint partner domains that may be working with a third-party vendor. However these cookies are more often than not used as tracking indicators about user behavior and what other sites they visit.
|Considering the risk is it worth having third-party cookies that silently track you? Many companies and brokers are ramping up their usage of tracking users with this metric along with [[Device fingerprint|browser fingerprinting]] to serve you [[Personalized Ads|targeted ads]] based on what pages you look at or search for
|-
|Authentication Cookie
|Are often tied to accounts that you use to prevent having to re-login each time you need to do an action with your account. These are usually stored as session cookies, which generally have a shorter lifespan or even expire after your tab session has ended with the browser
|These tend to be less risky, in cases where these [[wikipedia:Session_token|tokens]] are stored short-term and encrypted, can provide you with much needed convenience. But if your browser may be compromised by malware (such as a scam browser extension) your session [[wikipedia:Session_hijacking|cookies can be hijacked and used to access your account]]
|-
|Tracking Cookie
|Often malicious, but can be used to track sites performance and metrics based on reoccurring traffic and visits made, with minimal overhead
|Usually, sites that try to access third-party cookies (to learn more about you) will also be adding their own. With this information, they can calculate value-based pricing and targeted products that you may have recently looked at in previous weeks or days, with a [[Fear of missing out|FOMO]] offer discount
|-
|Preference Cookie
|Often, the least sensitive cookie on a site. This can be used to store specific preferences like a footer dismissal to how many results should show from a search to provide better functionality and efficiency, especially if the site has no account system.
|While this could possibly be used to track you, the information doesn't necessarily give you away. Since many that do implement this are domain-specific cookies and not third-party cookies, as referenced earlier
|}

==Why it is a problem==

====Targeted advertising====
{{Main| Personalized Ads}}

====Value based pricing====

====Cross Website tracking====

==Examples==

*[[PayPal Honey|Honey]] using cookies to share new affiliate codes with other users; this also had included many private exclusive discount codes that employees or veterans got for shopping at stores, costing businesses tons of money
*[[Microsoft]] placing cookie tracking on school student devices<ref>{{Cite web |last=Clark |first=Lindsay |date=2026-01-27 |title=Ruling: Microsoft illegally placed cookies on child's tech |url=https://www.theregister.com/2026/01/27/microsft_illegally_installed_cookies_ruling_austra_school/ |url-status=live |archive-url=https://web.archive.org/web/20260210101620/https://www.theregister.com/2026/01/27/microsft_illegally_installed_cookies_ruling_austra_school |archive-date=2026-02-10 |access-date=2026-03-16 |website=The Register}}</ref>
*[[Imgur]] using tracking cookies to serve ads to users from third party sites

== External links ==

* [https://developer.mozilla.org/en-US/docs/Web/HTTP/Guides/Cookies Using HTTP cookies | MDN]

==References==
{{reflist}}

[[Category:Common terms]]

SSO Tax

2026-03-17T21:21:04Z

Mr Pollo:

{{Delete|no content}}
https://sso.tax/<nowiki/>{{Ph-T-Int}}

==How it works==
{{Ph-T-HIW}}

==Why it is a problem==
{{Ph-T-WIIAP}}

==Examples==
{{Ph-T-E}}

==References==
{{reflist}}

[[Category:Common terms]]

Fruitbat Factory

2026-03-17T21:20:45Z

Mr Pollo: or*

{{Stub}}
{{CompanyCargo
|Founded=2012
|Industry=Video Games
|Type=Private
|Website=https://fruitbatfactory.com/
|Description=Fruitbat Factory, Oy. is an international video game publisher established in 2012.
|Logo=Fruitbat Factory Logo.png|CompanyAlias=FBF}}

'''Fruitbat Factory''' is an international video game publisher founded in 2012 and headquartered in Finland. The company specializes in the localization and distribution of Japanese indie titles for Western markets, with its most prominent release being the digital board game 100% Orange Juice.

In recent years, the publisher has faced significant scrutiny from its consumer base. Criticism centers on its heavy reliance on downloadable content (DLC) and technical updates perceived as detrimental to the long-term accessibility of its products.

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
{{Ph-C-Inc}}

==References==
{{Reflist}}
[[Category:{{PAGENAME}}]]

Fruitbat Factory

2026-03-17T21:19:52Z

Mr Pollo: needs references of article will be deleted

DeepSeek

2026-03-17T21:17:52Z

Mr Pollo: formatted references

{{Stub}}
{{CompanyCargo
|Founded=2023-07-17
|Industry=Artificial Intelligence
|ParentCompany=High-Flyer
|Type=Private
|Website=https://www.deepseek.com/
|Logo=DeepSeek_logo.svg
|Description=Chinese company developer of the DeepSeek large language models
|CompanyAlias= Hangzhou DeepSeek Artificial Intelligence Basic Technology Research Co., Ltd.
}}
[[wikipedia:DeepSeek|'''DeepSeek''']] is a chinese artificial intelligence company founded on 17 July 2023 by Liang Wenfeng. It develops the [[wikipedia:DeepSeek_(chatbot)|DeepSeek large language model]] (LLM).

==Consumer-impact summary==
===User Freedom===
In order to use the model from the official website or application, it is required to log in or create an account. However, the model can be downloaded, run locally and modify its components as it is distributed under the MIT license.
The service provided from the official websites and applications offer unlimited conversations with the most recent models and features.

===User Privacy===
Using the chatbot from the official website, application or via the official API has raised several privacy concerns as how the company gathers and uses users data. Researches in South Korea found that the data collected is sent to [[ByteDance]].<ref>{{Cite web|url=https://en.yna.co.kr/view/AEN20250218005300315|title=DeepSeek sent S. Korean user data to China's ByteDance: regulator|first=Kim|last=Hyun-soo|date=2025-02-18|work=Yonhap News Agency|archive-url=https://web.archive.org/web/20250218135802/https://en.yna.co.kr/view/AEN20250218005300315|archivedate=2025-02-18|url-status=live}}</ref>

===Business Model===
DeepSeek grants access to the APIs of their models by fee per 1M tokens. <ref>{{Cite web |publisher=DeepSeek|title=Models & Pricing |url=https://api-docs.deepseek.com/quick_start/pricing |url-status=live |archive-url=https://web.archive.org/web/20260308122355/https://api-docs.deepseek.com/quick_start/pricing |archive-date=2026-03-08 |access-date=13 Mar 2026 |website=DeepSeek Api Docs}}</ref>

===Market Control===
According to StatCounter as of February 2026, DeepSeek chatbot market share is 0.01% <ref>{{Cite web |publisher=StatCounter |date=Feb 2026 |title=AI Chatbot Market Share Worldwide |url=https://gs.statcounter.com/ai-chatbot-market-share |url-status=live |archive-url=https://archive.is/stjr5 |archive-date=2026-03-09 |access-date=13 Mar 2026 |website=statcounter.com}}</ref>.

==Censorship and biases==
[[File:DeepSeek_when_asked_about_Xi_Jinping_and_Narendra_Modi.png|thumb|A screenshot that shows a reply censorship when asked the model if Xi Jinping is an autocrat in nature. If it is asked the model the same question but with a non-chinese politician, it replies with a balanced answer]]
The DeepSeek language models have heavy censorship of topics and information that is sensitive to the Chinese government, such as Tianmen Square Massacre, Taiwan's and Hong Kong's political statuses. If the user asks the model about information catalogued as "sensitive for the Chinese government", it will either block the reply and set a "Sorry, that's beyond my current scope. Let's talk about something else." pre-fabricated message or deny about it. {{Citation needed}} However, the censorship can be bypassed by adding additional instructions or by using the models from outside the chinese API.

An example of censorship occurs when the user sends a prompt containing "Taiwan is a country". This causes the model to claim that Taiwan is a "special administrative region of China" or to block the output if the model replies with a message confirming the region is a country. {{Citation needed}}

==Incidents==

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===Security breach (Jan. 2025)===
On January 29 2025, a group of cibersecurity researches discovered over 1 million unencrypted sensitive records were leaked. This affected iOS users and information exposed include device information and conversation history.
<ref>{{Cite web|url=https://www.forbes.com/sites/larsdaniel/2025/02/01/deepseek-data-leak-exposes--1000000-sensitive-records/|title=DeepSeek Data Leak Exposes 1 Million Sensitive Records|first=Lars|last=Daniel|date=2025-02-01|work=Forbes}}</ref>
<ref>{{Cite web|url=https://www.quorumcyber.com/threat-intelligence/deepseek-app-exposes-sensitive-user-and-device-data-due-to-lack-of-encryption/|title=DeepSeek App Exposes Sensitive User and Device Data Due to Lack of Encryption|work=Quorum Cyber|date=2025-02-26}}</ref>

===Mobile application collecting user data (2025)===
In 2025, in Italy and Germany the DeepSeek mobile application from the Apple App Store and Google Play Store was banned due to the data management.<ref>{{Cite web|url=https://www.reuters.com/sustainability/boards-policy-regulation/deepseek-faces-expulsion-app-stores-germany-2025-06-27/|title=DeepSeek faces ban from Apple, Google app stores in Germany|work=Reuters|date=2025-06-27|first1=Hakan|last1=Ersen|first2=Miranda|last2=Murray}}</ref> <ref>{{Cite web|url=https://www.theguardian.com/technology/2025/jan/29/deepseek-blocked-some-app-stores-italy-questions-data-use|title=DeepSeek blocked from some app stores in Italy amid questions on data use|first1=Robert|last1=Booth|first2=Jakub|last2=Krupa|first3=Angela|last3=Giuffrida|work=TheGuardian|date=2025-01-29}}</ref>

==Products==
*DeepSeek LLM
*DeepSeek Coder
*DeepSeek Math

==See also==
{{Ph-C-SA}}

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

DeepSeek

2026-03-17T21:11:05Z

Mr Pollo:

{{Stub}}
{{CompanyCargo
|Founded=2023-07-17
|Industry=Artificial Intelligence
|ParentCompany=High-Flyer
|Type=Private
|Website=https://www.deepseek.com/
|Logo=DeepSeek_logo.svg
|Description=Chinese company developer of the DeepSeek large language models
|CompanyAlias= Hangzhou DeepSeek Artificial Intelligence Basic Technology Research Co., Ltd.
}}
[[wikipedia:DeepSeek|'''DeepSeek''']] is a chinese artificial intelligence company founded on 17 July 2023 by Liang Wenfeng. It develops the [[wikipedia:DeepSeek_(chatbot)|DeepSeek large language model]] (LLM).

==Consumer-impact summary==
===User Freedom===
In order to use the model from the official website or application, it is required to log in or create an account. However, the model can be downloaded, run locally and modify its components as it is distributed under the MIT license.
The service provided from the official websites and applications offer unlimited conversations with the most recent models and features.

===User Privacy===
Using the chatbot from the official website, application or via the official API has raised several privacy concerns as how the company gathers and uses users data. Researches in South Korea found that the data collected is sent to [[ByteDance]]. <ref>https://web.archive.org/web/20250218135802/https://en.yna.co.kr/view/AEN20250218005300315</ref>

===Business Model===
DeepSeek grants access to the APIs of their models by fee per 1M tokens. <ref>{{Cite web |publisher=DeepSeek|title=Models & Pricing |url=https://api-docs.deepseek.com/quick_start/pricing |url-status=live |archive-url=https://web.archive.org/web/20260308122355/https://api-docs.deepseek.com/quick_start/pricing |archive-date=2026-03-08 |access-date=13 Mar 2026 |website=DeepSeek Api Docs}}</ref>

===Market Control===
According to StatCounter as of February 2026, DeepSeek chatbot market share is 0.01% <ref>{{Cite web |publisher=StatCounter |date=Feb 2026 |title=AI Chatbot Market Share Worldwide |url=https://gs.statcounter.com/ai-chatbot-market-share |url-status=live |archive-url=https://archive.is/stjr5 |archive-date=2026-03-09 |access-date=13 Mar 2026 |website=statcounter.com}}</ref>.

==Censorship and biases==
[[File:DeepSeek_when_asked_about_Xi_Jinping_and_Narendra_Modi.png|thumb|A screenshot that shows a reply censorship when asked the model if Xi Jinping is an autocrat in nature. If it is asked the model the same question but with a non-chinese politician, it replies with a balanced answer]]
The DeepSeek language models have heavy censorship of topics and information that is sensitive to the Chinese government, such as Tianmen Square Massacre, Taiwan's and Hong Kong's political statuses. If the user asks the model about information catalogued as "sensitive for the Chinese government", it will either block the reply and set a "Sorry, that's beyond my current scope. Let's talk about something else." pre-fabricated message or deny about it. {{Citation needed}} However, the censorship can be bypassed by adding additional instructions or by using the models from outside the chinese API.

An example of censorship occurs when the user sends a prompt containing "Taiwan is a country". This causes the model to claim that Taiwan is a "special administrative region of China" or to block the output if the model replies with a message confirming the region is a country. {{Citation needed}}

==Incidents==

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===Security breach (Jan. 2025)===
On January 29 2025, a group of cibersecurity researches discovered over 1 million unencrypted sensitive records were leaked. This affected iOS users and information exposed include device information and conversation history.
<ref>https://www.forbes.com/sites/larsdaniel/2025/02/01/deepseek-data-leak-exposes--1000000-sensitive-records/</ref>
<ref>https://www.quorumcyber.com/threat-intelligence/deepseek-app-exposes-sensitive-user-and-device-data-due-to-lack-of-encryption/</ref>

===Mobile application collecting user data (2025)===
In 2025, in Italy and Germany the DeepSeek mobile application from the Apple App Store and Google Play Store was banned due to the data management. <ref>https://www.reuters.com/sustainability/boards-policy-regulation/deepseek-faces-expulsion-app-stores-germany-2025-06-27/</ref> <ref>https://www.theguardian.com/technology/2025/jan/29/deepseek-blocked-some-app-stores-italy-questions-data-use</ref>

==Products==
*DeepSeek LLM
*DeepSeek Coder
*DeepSeek Math

==See also==
{{Ph-C-SA}}

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]

Category:DeepSeek

2026-03-17T21:10:13Z

Mr Pollo: Created page with "Category:Artificial intelligence companies"

[[Category:Artificial intelligence companies]]

PlayStation 3 "Yellow Light of Death"

2026-03-17T21:09:46Z

Mr Pollo:

{{IncidentCargo
|Company=Sony, PlayStation
|StartDate=2006-11
|Status=Active
|ProductLine=Playstation
|Product=Playstation 3
|ArticleType=Product
|Type=Repairability, Knowingly selling defective product, Defects
|Description=Due to a likely defect in the 90nm graphic processing units (GPUs) of early PlayStation 3s,these models are extremely prone to GPU failure
}}Due to a likely defect in the 90nm graphic processing units (GPUs) of early PlayStation 3s, these models are extremely prone to GPU failures.

Affected models (with a 90nm GPU) include: CECHA, CECHB, CECHC, CECHE, and CECHG.

==Background==

===Graphics Processing Unit (GPU) Faults===
From approximately 2005-2010, GPU manufacturers Nvidia and ATI developed some GPUs that had a serious design flaw. This flaw led to failures in many of their GPUs during that time period, and Nvidia even saw a class action lawsuit from it. In order to understand what truly happened during this controversy, though, it's important to understand what exactly led to the faults.

These manufacturers had engineered GPUs that electrically connected the silicon chip (die) to the substrate (the "green square part") using high-lead solder bumps. High-lead solder bumps were chosen in order to fit the power delivery specifications that these GPUs needed; high-lead bumps can deliver more current. To give these solder bumps more strength (especially when operating at high temperatures), it's standard to use an epoxy with silica filler known as underfill. Underfill needs to fit certain specifications, depending on how hot the processor it's used on is expected to get. If it's too hard, the underfill will crack the die. If it's too soft, the bumps will crack because the underfill isn't supportive enough. It also needs to still fit within the right specifications at both high and low temperatures.

In 2006, IBM and Amkor published a study that explained that use of a low Tg underfill was not acceptable with high-lead solder bumps, and high Tg would be necessary to avoid defects. Therefore, because Nvidia and ATI chose to use high-lead solder bumps, they needed a high Tg underfill. However, this study was not out at the time that GPUs from 2005 were made, and the companies ended up using low Tg underfill in these processors.

This low Tg underfill would become too soft at high, but normal operating temperatures for these GPUs. When the processor went through normal thermal changes, the solder bumps would soften under heat and harden as they cooled. This would happen over and over again until they cracked under the thermal stress. When enough solder bumps cracked, it would cause a failure in the unit, hence the term "Bumpgate".

==Incident==
In November 2006, Sony released the PlayStation 3. Similar to the Xbox 360, the early models of PlayStation 3 had what consumers believe to be a Bumpgate-related defect with its Nvidia-based Reality Synthesizer (RSX) GPU. Many consumers who had purchased early "phat" models with a 90nm GPU experienced critical system failures. PlayStation 3 systems that were exhibiting the issue may freeze suddenly during gameplay and shut off. However, all users affected would find that when attempting to turn their PlayStation 3 back on, the LED power indicator would momentarily turn green, then the system would beep three times while very briefly flashing to a yellow light, then it would continuously blink red without booting the system. This failure was coined by consumers as the "Yellow Light of Death".

A 2009 segment by BBC Watchdog covered the "Yellow Light of Death".<ref name=":1">{{Cite web |last=HelpForPS3 (Reuploader) |last2=BBC |date=17 Dec 2009 |title=Sony PS3 Yellow Light of Death - BBC |url=https://www.youtube.com/watch?v=E_ef8bDQktI |url-status=live |access-date=3 Jun 2025 |website=YouTube}}</ref> The presenters stated that when viewers contacted Sony about their console malfunctioning, the company simply stated that the issue could have resulted from a variety of possible failures, and pinpointing the cause would require disassembly of the affected system to analyze error codes. This is true; the LED indicators only indicate a general hardware failure, and a proper diagnosis can only be made after checking the PS3's System Controller (Syscon) and checking for error codes.

During the BBC Watchdog segment, one of the interviewees explained that consumers whose systems were outside of the one year warranty period would have to pay £128 (~$173) for a repair, and Sony would only provide customers with a standard three-month post-repair warranty. If the system failed again after that point, they would have to pay out of pocket for another repair. By August 2008, Sony had begun manufacturing consoles with the 65nm RSX<ref name=":62">{{Cite web |last=Miller |first=R. |date=26 Jun 2008 |title=PS3 graphics chip going 65nm this Fall |url=https://www.engadget.com/2008-06-26-ps3-graphics-chip-going-65nm-this-fall.html |url-status=live |archive-url=https://web.archive.org/web/20210924101930/https://www.engadget.com/2008-06-26-ps3-graphics-chip-going-65nm-this-fall.html |archive-date=24 Sep 2021 |access-date=3 Jun 2025 |website=Engadget}}</ref><ref>{{Cite web |title=NVIDIA Playstation 3 GPU 65nm Specs |url=https://www.techpowerup.com/gpu-specs/playstation-3-gpu-65nm.c1682 |url-status=live |access-date=3 Jun 2025 |website=TechPowerUp GPU Database}}</ref>, which enthusiasts confirmed does not have the theoretically Bumpgate-related fault.<ref name=":2">{{Cite web |last=RIP Felix |date=15 Jan 2024 |title=A 360 Story - The RED Ring of Death & the 7th Generation Console War |url=https://www.youtube.com/watch?v=3qKtS_uxdcU |url-status=live |access-date=2 Jun 2025 |website=YouTube}}</ref><ref name=":142">{{Cite web |last=RIP Felix |date=9 Jun 2025 |title=A PS3 Story 2: Defending BumpGate Theory |url=https://www.youtube.com/watch?v=vpjtRjGPLhI |url-status=live |access-date=10 Jun 2025 |website=YouTube}}</ref> In addition, Sony has successfully repaired consoles by transplanting non-defective GPUs (the 65nm or 40nm RSX) into systems that were originally manufactured with a defective 90nm RSX.<ref name=":17">{{Cite web |last=Icferrum |date=2 Feb 2020 |title=Frankenstein PHAT PS3: CECHA with 40nm RSX |url=https://www.psx-place.com/threads/frankenstein-phat-ps3-cecha-with-40nm-rsx.28069/ |url-status=live |access-date=14 Jun 2025 |website=PSX-Place}}</ref><ref>{{Cite web |last=Mystic |date=9 Apr 2025 |title=Sony's PS3 Upgrade They Never Told You About: Official 40nm RSX Frankenstein Console From Sony |url=https://www.youtube.com/watch?v=2abnrOADoCc |url-status=live |access-date=14 Jun 2025 |website=YouTube}}</ref> However, consoles repaired prior to Sony implementing this repair policy were highly likely to fail again. In addition, the console would also be reset during the repair, resulting in the loss of any data that was not backed up prior to the failure (i.e., game saves).<ref name=":1" />

===Sony's response===
Sony never issued a recall or extended warranty for affected systems; all repair costs were paid by consumers, unless the system failed during the standard one-year warranty period. However, the PS3's fan table accommodated better for the temperature changes that led to failures than the Xbox 360 did, so it took longer for the defect to manifest. Depending on how frequently the console was used, some consumers would not encounter the defect until a few years into owning their console.

When the 65nm RSX was released in Fall 2008,<ref name=":6">{{Cite web |last=Miller |first=R. |date=26 Jun 2008 |title=PS3 graphics chip going 65nm this Fall |url=https://www.engadget.com/2008-06-26-ps3-graphics-chip-going-65nm-this-fall.html |url-status=live |archive-url=https://web.archive.org/web/20210924101930/https://www.engadget.com/2008-06-26-ps3-graphics-chip-going-65nm-this-fall.html |archive-date=24 Sep 2021 |access-date=3 Jun 2025 |website=Engadget}}</ref> the defect that seems to have caused the "Yellow Light of Death" was resolved for the late "phat" PS3 models. PS3 "slim" models and newer revisions were completely unaffected. The timing of this led some consumers<ref name=":4">{{Cite web |last=RIP Felix |first= |date=23 Dec 2022 |title=A PS3 Story: The Yellow Light of Death |url=https://www.youtube.com/watch?v=Za7WTNwAX0c |url-status=live |access-date=2 Jun 2025 |website=YouTube}}</ref> to suspect that Sony had known about the defect and quietly fixed it. This was at the same time that Microsoft was addressing the problems with the Xbox 360, as well as while Nvidia was being confronted for their Bumpgate defect in some of their GPUs (particularly, the G84 and G86).

Notably, the RSX is a customized version of Nvidia's 256MB GeForce 7800 GTX.<ref>{{Cite web |last=Shimpi |first=Anand |last2=Wilson |first2=Derek |date=24 Jun 2005 |title=Microsoft's Xbox 360, Sony's PS3 - A Hardware Discussion |url=https://www.anandtech.com/show/1719/9 |url-status=live |access-date=16 Jun 2025 |website=AnandTech}}</ref> The GeForce 7 series does have some defective units with low-Tg underfill, but it is unclear if the 7800 GTX is among them. There are no known sources of consumer complaints about the 7800 GTX, and none of the notebook laptops covered by the Nvidia class action lawsuit settlement<ref name=":16">{{Cite web |title=Affected Models |url=https://www.nvidiasettlement.com/affectedmodels.html |url-status=dead |archive-url=https://web.archive.org/web/20101001080616/http://www.nvidiasettlement.com/affectedmodels.html |archive-date=1 Oct 2010 |access-date=7 Jun 2025 |website=The NVIDIA GPU Litigation}}</ref> seem to have that GPU or a mobile version of it. However, this does not necessarily indicate that there was no defect with the 90nm RSX, that Sony wasn't aware that it was defective, or that the 90nm RSX wasn't at all affected by Bumpgate. Console repair and modding enthusiasts have performed extensive research<ref name=":4" /><ref name=":18">{{Cite web |last=Derf |last2=Nadaman |last3=Alex3107 |display-authors=2 |date=14 Jun 2025 |title=PlayStation 3 - Buying Guide |url=https://consolemods.org/wiki/PS3:Buying_Guide#PlayStation_3_%22Fat/Phat%22_(2006-2009) |url-status=live |access-date=14 Jun 2025 |website=ConsoleMods Wiki}}</ref> and testing<ref name=":14">{{Cite web |last=RIP Felix |date=9 Jun 2025 |title=A PS3 Story 2: Defending BumpGate Theory |url=https://www.youtube.com/watch?v=vpjtRjGPLhI |url-status=live |access-date=10 Jun 2025 |website=YouTube}}</ref> strongly supports the hypothesis that the "Yellow Light of Death" was caused by Bumpgate, and the only way to permanently repair an affected system is to replace the 90nm RSX with a working non-defective unit.

As of 2025, Sony has never made an official statement confirming that the "Yellow Light of Death" was a widespread issue in early PlayStation 3 consoles, nor have they definitively explained that it was linked to Bumpgate.

==Consumer response==
Consumers who experienced the "Yellow Light of Death" were upset with Sony for their poor response. Some, such as PS3 modding and repair enthusiast "RIP Felix", described Sony's response as "gaslighting"<ref name=":23">{{Cite web |last=RIP Felix |date=15 Jan 2024 |title=A 360 Story - The RED Ring of Death & the 7th Generation Console War |url=https://www.youtube.com/watch?v=3qKtS_uxdcU |url-status=live |access-date=2 Jun 2025 |website=YouTube}}</ref>- saying that Sony had manipulated consumers into thinking that there was no widespread defect. The six-page letter from Ray Maguire to the BBC following their Watchdog segment takes a tone that supports Felix's claim<ref name=":122">{{Cite web |last=BBC |date=18 Sep 2009 |title=Sony rebuts BBC PlayStation claim |url=https://news.bbc.co.uk/2/hi/technology/8263063.stm |url-status=live |archive-url=https://web.archive.org/web/20250219154020/http://news.bbc.co.uk/2/hi/technology/8263063.stm |archive-date=19 Feb 2025 |access-date=4 Jun 2025 |website=BBC NEWS}}</ref><ref name=":132">{{Cite web |last=Martin |first=Matt |date=17 Sep 2009 |title=Sony tackles BBC over 'PS3 failure' report |url=https://www.gamesindustry.biz/sony-tackles-bbc-over-ps3-failure-report |url-status=live |access-date=10 Jun 2025 |website=Gamesindustry.biz}}</ref>; By 2009, Sony had stopped producing PS3s with the defective 90nm RSX- which left many consumers suspicious that Sony was trying to cover up the problem to avoid taking responsibility for it.

In 2006, when the PlayStation 3 was new, the console costed $599 USD for the 60GB model ($499 USD for the 20GB model).<ref name=":32">{{Cite web |last=Xbox |date=13 Dec 2021 |title=Power On: The Story of Xbox {{!}} Chapter 5: The Red Ring of Death |url=https://www.youtube.com/watch?v=z2d6IMBS8oY |url-status=live |archive-url=https://archive.org/details/power-on-the-story-of-xbox/The+Story+of+the+Xbox+-+Chapter+5/Power+On+-+The+Story+of+Xbox+-+Chapter+5+-+The+Red+Ring+of+Death.mp4 |archive-date=13 Dec 2021 |access-date=4 Jun 2025 |website=YouTube}}</ref> This was a major price to pay for a game console at the time; the Nintendo Wii launched at $249.99 USD in November 2006,<ref>{{Cite web |last=Sanders |first=Kathleen |last2=Casamassina |first2=Matt |date=14 Sep 2006 |title=US Wii Price, Launch Date Revealed |url=https://www.ign.com/articles/2006/09/14/us-wii-price-launch-date-revealed |url-status=live |access-date=10 Jun 2025 |website=IGN}}</ref> and the Xbox 360 launched in late November 2005 at $399 USD ($299 USD for the Core System version).<ref>{{Cite web |last=Surette |first=Tim |date=17 Aug 2005 |title=Xbox 360 pricing revealed: $299 and $399 models due at launch |url=https://www.gamespot.com/news/xbox-360-pricing-revealed-299-and-399-models-due-at-launch-6131245 |url-status=dead |archive-url=https://web.archive.org/web/20130605013951/http://www.gamespot.com/news/xbox-360-pricing-revealed-299-and-399-models-due-at-launch-6131245 |archive-date=5 Jun 2013 |access-date=10 Jun 2025 |website=GameSpot}}</ref> Because of the extremely high price compared to competitors, consumers felt that they were making a major investment in a high quality system that would be well-supported if there was a defect. Unfortunately, Sony failed to ever acknowledge the "Yellow Light of Death", other than denying how widespread it was in their only official rebuttal from Ray Maguire, and made consumers pay for an issue that was never their fault.

Some consumers who dealt with the "Yellow Light of Death" paid Sony to repair their systems, but others decided to consider it a loss. For consumers whose systems failed after the "Slim" models came out, some of them chose to re-purchase the cheaper, allegedly more reliable Slim models. At the time, it was assumed that these models were not prone to "Yellow Light of Death" (they have since been confirmed completely non-defective), but there was still some uncertainty among the community at the time. However, others gave up on Sony entirely, switching to other platforms- particularly, the Xbox 360.

===Consumers perform their own repairs===
As a result of the poor response from Sony, consumers largely took things into their own hands. When the PS3 was still supported, informed consumers were sure to warn prospective buyers that the "backwards compatible" and "phat" models of PS3 were prone to the "Yellow Light of Death", that Sony wouldn't fix it for free, and even if they were willing to send it in for repairs, the system would be reset. In the United Kingdom, there was the BBC Watchdog segment that- while misguided on the cause of the problem- did inform consumers across the UK about the issues, so they knew to avoid these early PS3s and choose a newer Slim model if they wanted a PS3.

As of 2025, nearly every PS3 enthusiast knows about the reliability issues of the early, "backwards compatible" PlayStation 3s. Despite this, though, these systems are quite popular among retro console repair and modding enthusiasts particularly for their ability to play not only original PlayStation games, but also PlayStation 2 games. The earliest two revisions, CECHAxx and CECHBxx, even have real PlayStation 2 processors built-in.<ref name=":183">{{Cite web |last=Derf |last2=Nadaman |last3=Alex3107 |display-authors=2 |date=14 Jun 2025 |title=PlayStation 3 - Buying Guide |url=https://consolemods.org/wiki/PS3:Buying_Guide#PlayStation_3_%22Fat/Phat%22_(2006-2009) |url-status=live |access-date=14 Jun 2025 |website=ConsoleMods Wiki}}</ref> This is especially enticing to consumers who own a PlayStation 5, which is capable of playing PlayStation 4 games, so a person could play any PlayStation game across any generation on legitimate hardware with only two consoles. The reliability issues of these early PS3s is a major downside to consumers, though, so the community has been looking for ways to permanently repair these systems for nearly two decades.

However, because Sony never acknowledged the defect, it was far less clear to consumers what exactly was causing the fault than it was for the Xbox 360. This led many retro console and repair enthusiasts to make poorly informed choices in how to attempt to repair their devices. The only guidance that consumers had for what the fault could be was from the BBC Watchdog segment stating that it was a GPU failure- however, they had incorrectly diagnosed the cause in the segment. BBC Watchdog had also employed technicians to reflow the components on afflicted PS3s' motherboards- which led enthusiasts to believe that doing the same to their console would fix it. However, this would only temporarily restore functionality to the system.

By 2018, frustrated PS3 owners were searching for a better solution- preferably, an easier fix. As a result, rumors began to spread that it was not the RSX GPU that was defective, but rather, the NEC-Tokin capacitors surrounding it.<ref name=":43">{{Cite web |last=RIP Felix |first= |date=23 Dec 2022 |title=A PS3 Story: The Yellow Light of Death |url=https://www.youtube.com/watch?v=Za7WTNwAX0c |url-status=live |access-date=2 Jun 2025 |website=YouTube}}</ref> The reason for the misconception was because Toshiba laptops from the same era had their NEC-Tokins fail prematurely due to a design flaw specific to those laptops. In addition, a failure of the NEC-Tokins can result in similar behavior from the PS3, lending further credence to the claim. It was all but "confirmed" when enthusiasts tried replacing them with tantalum capacitors, and it worked for some. However, the reason for this is because it is possible for PS3s to have a GPU-related failure because of the NEC-Tokin capacitors. It has since been confirmed that the NEC-Tokins are not defective or poorly placed, and if they have failed in a console, it is likely due to normal aging. In fact, these capacitors are specialized for their purpose in the PS3, and should not be replaced unless they truly have failed.

In 2020, PSX-Place forum user "Icferrum" discovered a CECHAxx PS3 with a 40nm RSX inside instead of a standard 90nm RSX. There was no information about this modification online, so the only explanation was that Sony had done this officially. This set enthusiasts off to find a way to perform the same modification. A breakthrough was eventually made with the development of the "Frankenstein Mod" in 2021 (sometimes referred to as the "Orbis Mod"), which utilizes an Orbis modchip to make a 40nm RSX compatible with older PS3 models.<ref name=":173">{{Cite web |last=Icferrum |date=2 Feb 2020 |title=Frankenstein PHAT PS3: CECHA with 40nm RSX |url=https://www.psx-place.com/threads/frankenstein-phat-ps3-cecha-with-40nm-rsx.28069/ |url-status=live |access-date=14 Jun 2025 |website=PSX-Place}}</ref>

As for how consumers largely discovered that the problem was related to Bumpgate, YouTube and PSX-Place user "RIP Felix" published multiple videos detailing his research and theories regarding the early PS3s' defect. Most significantly, Felix published a video where he and Xbox 360 repair and modding enthusiast Josh Davidson (Octal450 on the ConsoleMods Wiki) performed various experiments to confirm their theory that the PS3's 90nm RSX was affected by Bumpgate. They tested the solder bumps under the 90nm RSX's die to confirm the use of high-lead solder bumps, and also performed a variety of tests on the underfill, comparing it to similar defective and non-defective GPUs from the same era- such as the Xbox 360's GPUs and Nvidia's GPUs. The tests included simply shining an ultraviolet light on the underfill to see the similarities in color and luminescence, poking the underfill of each of the GPUs with a soldering iron at various temperatures to compare the reactions, and even using a UV visual spectrophotometer to visualize the difference between compositions in various underfills. The results strongly support Felix's theory that the PS3's 90nm RSX's defects were due to Bumpgate; each test showed that the 90nm RSX was remarkably similar to known defective GPUs, but distinct from non-defective ones.<ref name=":144">{{Cite web |last=RIP Felix |date=9 Jun 2025 |title=A PS3 Story 2: Defending BumpGate Theory |url=https://www.youtube.com/watch?v=vpjtRjGPLhI |url-status=live |access-date=10 Jun 2025 |website=YouTube}}</ref> Felix and Davidson's findings effectively confirm that the only way to repair early PlayStation 3s with the "Yellow Light of Death" caused by a GPU failure is to replace the GPU with a non-defective model.

Thanks to the work of retro console modding and repair enthusiasts, consumers have an option to permanently repair these valuable systems. However, the "Frankenstein Mod" is not recommended for inexperienced modders or those who don't have access to a BGA rework station. Because of the specialized nature of this modification, most people will still recommend for consumers to find someone skilled enough to do the modification for them, buy a system that is already modified, or to simply avoid purchasing any consoles impacted by Bumpgate.

==References==
{{reflist}}
[[Category:PlayStation 3]]

DMarket

2026-03-17T21:09:14Z

Mr Pollo:

{{Incomplete}}
{{CompanyCargo
|Founded=2017
|Industry=Digital goods
|Logo=DMarket logo.png
|Type=DMarket Ltd
|Website=https://dmarket.com/
|Description=DMarket is a 3rd party marketplace for trading and buying virtual items from Steam games.
}}

'''DMarket''' is an international online blockchain-based marketplace for trading and buying virtual assets from games located on [[Steam]] such as ''Counter-Strike 2'', ''Team Fortress 2'' and others. The company’s headquarters are located in America, and it has development roots in Ukraine.

==Consumer impact summary==
===Privacy policy===
*Collects personal data and retains it for an unspecified period of time. <ref name=":0">{{Cite web |author= |title=MYTHICAL AND DMARKET PRIVACY POLICY - 10/4.6./2.1./7 |url=https://dmarket.com/privacy-policy |website=DMarket |date=2 Dec 2024 |access-date=14 Mar 2026 |url-status=live |archive-url=https://ghostarchive.org/archive/dUTXz |archive-date=15 Mar 2026}}</ref>
*Shares personal data with broad categories of third parties. <ref name=":0" />
*Collects detailed technical identifiers that can be used to track users devices. <ref name=":0" />
*Does not respond to browser "Do Not Track" (DNT) privacy signals <ref name=":0" />

===Terms of Use===
*Reserves the right to disable or shut down the website permanently for any reason. <ref name=":1">{{Cite web |author= |title=DMARKET TERMS OF USE - 2.2/3.9/3.10/5.5/6.1 |url=https://dmarket.com/terms-of-use |website=DMarket |date=18 Dec 2023 |access-date=14 Mar 2026 |url-status=live |archive-url=https://ghostarchive.org/archive/TKXT7 |archive-date=15 Mar 2026}}</ref>
*Inactive account can be terminated without any refund. <ref name=":1" />
*Account can be terminated based on suspicion or "non-ordinary use" without notice. <ref name=":1" />
*Terminated or suspended account may have its balance forfeited. <ref name=":1" />
*Deposited money can´t be withdrawn, unless it comes from selling items. <ref name=":1" />

==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:{{FULLPAGENAME}}|{{PAGENAME}} category]].

===DMarket bans users from Russia and Belarus (''2022'')===
DMarket has prohibited registration on the platform for users from Russia and Belarus. Accounts of previously registered users from these regions were frozen without prior notice and their balances remain inaccessible. <ref>{{Cite web |date=22 Feb 2022 |title=DMarket cuts all relationships with Russia and Belarus |url=https://x.com/DMarket/status/1497952451726565383}}</ref><ref>{{Cite news |first= |date=28 Feb 2022 |title=NFT Platform DMarket Freezes User Accounts From Russia and Belarus |url=https://bitnewsbot.com/breaking-nft-platform-dmarket-freezes-user-accounts-from-russia-and-belarus/ |work=BitNewsBot Team}}</ref><ref>{{Cite web |title=Do DMarket restrict users from Russia and Belarus? |url=https://support.dmarket.com/hc/en-us/articles/25065318793361-Do-DMarket-restrict-users-from-Russia-and-Belarus}}</ref><ref>{{Cite web |title=Dmarket goes political and bans accounts that have logged in from Russian IPs |url=https://old.reddit.com/r/csgomarketforum/comments/t2e4uu/d_dmarket_goes_political_and_bans_accounts_that/}}</ref><ref>{{Cite web |title=Dmarket.com кинули русских пользователей |url=https://www.reddit.com/r/csgo/comments/t2sw5y/dmarketcom_scammed_russian_users/?tl=ru}}</ref>

===DMarket requires submission of sensitive personal details to delete account.===
[[File:DMarket deletion "process" form screenshots.png|thumb|446x446px|[1] Shows the account deletion page on DMarket. [2] Shows the request submission form on DMarket. [3] Shows the "GDPR form" sent by DMarket support.]]To delete a DMarket account regardless if or any transactions were made, a user must submit a request on the DMarket websites ''[image-n1]'' that includes proof of ownership with screenshots and a detailed explanation. <ref>{{Cite web |title=Account deletion |url=https://support.dmarket.com/hc/en-us/articles/25102594718993-Account-deletion}}</ref> After submission ''[image-n2]'', DMarket support sends a "[[General Data Protection Regulation|GDPR]] form" ''[image-n3]'' requiring full name, government ID, home address and other personal data. This applies to accounts that have not completed "[[KYC]]" (Know Your Customer) verification as well.

This appears to violate [[General Data Protection Regulation|GDPR]]'s minimization principle <ref>{{Cite web |title=Art. 5 GDPRPrinciples relating to processing of personal data |url=https://gdpr-info.eu/art-5-gdpr/}}</ref>, as the personal data required to delete an account exceeds what was necessary to create the account.<ref>{{Cite web |title=You will NEVER be able to delete your account and unlinking your steam is a massive hassle. |url=https://www.reddit.com/r/csgomarketforum/comments/w8p4vi/psa_dmarket_is_sketchy_you_will_never_be_able_to/}}</ref> DMarket forces users to provide additional sensitive information than were not originally collected, which is disproportionate and potentially non-compliant with [[General Data Protection Regulation|GDPR]]. DMarket refuses to provide specific legal basis for why this information is needed, ''[image-n4]'' leaving users without justification. As a result, users are effectively prevented from exercising their Right to erasure <ref>{{Cite web |title=Art. 17 GDPRRight to erasure (‘right to be forgotten’) |url=https://gdpr-info.eu/art-17-gdpr/}}</ref> unless they disclose unnecessary personal information, undermining the foundation and the requirements of the regulation.

==See also==
{{Ph-C-SA}}

==References==
{{Reflist}}

[[Category:{{PAGENAME}}]]

Category:Chipotle

2026-03-17T21:07:59Z

Mr Pollo: Created page with "Category:Food and drink companies Category:Fast food"

[[Category:Food and drink companies]]
[[Category:Fast food]]

Hisense adds non-skippable ads to it's GUI on the Spanish models

2026-03-17T21:07:27Z

Mr Pollo:

{{Cleanup}}
{{IncidentCargo
|Company=HiSense, Nexxen
|StartDate=2026-02
|EndDate=2026-03
|Status=Resolved
|ProductLine=Hisense Smart TVs
|ArticleType=Product
|Type=Advertising, Annoying, Artificial Intelligence
|Description=In Spain, Hisense began to place non-skippable and personalized ads with artificial intelligence every time you changed the channel, the HDMI source,
}}In Spain, [[HiSense|Hisense]] began to place non-skippable and AI personalized ads every time you changed the channel, the HDMI source, turned on the television and other basic things.

==Background==
At the moment of this polemic Hisense Smart TVs use a personalized operating system called VIDAA (based on android TV). The partner company in VIDAA is [[Nexxen|Neexen]] a AI based personalized advertisement company who announced the introduction of programmatic advertising, in which every opportunity to show an ad to a viewer who is presented, is auctioned in real-time through DSP platforms automatically.

==Incident==
In the start of 2026 the operating system of the Hisense's smart TVs, [https://www.vidaa.com/ VIDAA], suddenly began to display non-skippable and full screen ads in it's GUI without notifying the customers.

'''The ads could appear in any moment''', whether was at change channels, turn on the TV, switch HDMI sources, or put prioritized sponsored content in the system GUI and home screen.

'''The ads appear even if the owner disabled the permissions or added a custom DNS that blocked them'''.

Because the ads were personalized, the TV was collecting information all the time about what the user was doing with it and what was watching to display the most optimized ad.

===Hisense's response===
The company responded by claiming that it was a "one-off test of the model" and "currently, this advertising format has already been withdrawn from Spain" in the face of criticism from consumers. Also says "The ideals related to the user experience are not – nor will they be, says the company – conditioned to the display of advertising".

==Consumer response==
The response of consumers was an immediate hatred and weariness towards the ads and an explosion of complaints and exposure of the problem on social networks.

==References==

#Álvarez del Vayo, Periódico El Español, [https://www.elespanol.com/elandroidelibre/noticias-y-novedades/20260227/hisense-empieza-mostrar-publicidad-espana-smarttvs-anuncios-incluso-encender-televisor/1003744148268_0.html "Hisense empieza a mostrar publicidad en España en sus smartTVs: anuncios incluso al encender el televisor"], new from 27 Feb 2026, retrieved 13 Mar 2026.
#Jose Antonio Carmona, Xatakahome, [https://www.xatakahome.com/televisores/se-trato-prueba-temporal-hisense-aclara-polemica-anuncios-sus-televisores-espana Hisense responde a la polémica de los anuncios a la fuerza en sus teles: “Se trató de una prueba temporal”], new from 6 Mar 2026, retrieved 13 Mar 2026.
#[https://www.reddit.com/r/Hisense/comments/1rb1law/ad_to_change_input_really_reupload_with_video/ ¿Un anuncio para cambiar de entrada?? ¿En serio?? (Re-subida con video) /], Reddit, from 23 Feb 2026, retrieved 13 Mar 2026.
#[https://bandaancha.eu/foros/anuncios-televisor-hisense-1759368 Mi televisión Hisense ha empezado a mostrar anuncios ¿cómo los puedo eliminar?], Bandaancha.eu, 26 Feb 2026, retrieved 13 Mar 2026
[[Category:Hisense]]
[[Category:Hisense Smart TVs]]
[[Category:Advertising controversies]]
[[Category:Privacy concerns]]

HiSense

2026-03-17T21:06:39Z

Mr Pollo:

{{Stub}}
{{CompanyCargo
|Founded=1969
|Industry=Home appliances, Electronics Manufacturing
|Logo=Hisense.png
|Type=Public, partial state-ownership
|Website=https://global.hisense.com/
|Description=Hisense is a home appliance and electronics manufacturing conglomerate headquartered in Qingdao, Shandong, China. It is currently the second largest m
}}Hisense is a home appliance and electronics manufacturing conglomerate headquartered in Qingdao, Shandong, China. It is currently the second largest manufacturer of televisions in the world

==Consumer-impact summary==
{{Ph-C-CIS}}

==Incidents==
This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the [[:Category:Hisense|Hisense category]].

===Hisense didn't provide official method of repair it's broken H9G/Q9G TV (''26 Sep 2024'')===
{{Main|Hisense H9G Smart TV}}

Hisense failed to offer recourse to consumers whose smart TVs broke due to faulty manufacturing. Where OEM replacement parts could have been provided or recalls could have been issued, Hisense instead forced its customers to waste their time, effort, and money to safely dispose of the 55"/65" TVs.

===Non-skippable GUI ads (''Feb 2026'')===
{{Main|Hisense adds non-skippable ads to it's GUI on the Spanish models}}
In the start of 2026 the operating system of the Hisense's smart TVs, VIDAA, suddenly began to display non-skippable and full screen ads in it's GUI without notifying the customers.

'''The ads could appear in any moment''', whether was at change channels, turn on the TV, switch HDMI sources, or put prioritized sponsored content in the system GUI and home screen.

'''The ads appear even if the owner disabled the permissions or added a custom DNS that blocked them'''.

Because the ads were personalized, the TV was collecting information all the time about what the user was doing with it and what was watching to display the most optimized ad.

==Products==
{{Ph-C-P}}

==See also==
{{Ph-C-SA}}

==References==
{{reflist}}

[[Category:Hisense]]

Axis Bank

2026-03-17T21:04:57Z

Mr Pollo:

{{Stub}}
{{CompanyCargo
|Founded=1993
|Industry=Banking
|Type=Public
|Website=https://www.axis.bank.in
|Description=Axis Bank Limited is an Indian multinational banking and financial services company headquartered in Mumbai.
|Logo=Axisbank.svg}}

{{Wplink|Axis_Bank|'''Axis Bank'''}} is a Indian multinational banking and financial services company headquartered in Mumbai. General banking services like savings account, current account, credit card, mutual funds, loans, etc. are offered.

==Incidents==
===Card devaluation (''2026'')===
{{Main|Airtel Axis Credit Card Devaluation}}
Axis bank is well known to devalue cards, from partial removal to complete removal of benefits.

==References==
{{reflist}}

[[Category:{{PAGENAME}}]]