$425 Million Google Class Action Lawsuit: Do You Qualify for a Payout?
Google was found liable for violating the privacy of 98 million users in a class action lawsuit. Are you one of them?
In September, a federal jury in California found Google liable on two counts of privacy violations for continuing to collect the data of millions of users who had turned off a data tracking setting in their Google Accounts. Google has to pay $425 million for the privacy violations.
Google denies the allegations in the lawsuit and is appealing the verdict. Meanwhile, the plaintiffs are asking for an even higher payout than the $425 million. So there is no date set yet on when members of the nationwide class action lawsuit will get a payout or how much that payout will be. If a court overturns the verdict after the appeal, there might be no payout at all.
Here’s what you need to know about the lawsuit, what’s next for the $425 million payout ordered by the jury and what you need to know about protecting your privacy and online security.
From just $107.88 $24.99 for Kiplinger Personal Finance
Become a smarter, better informed investor. Subscribe from just $107.88 $24.99, plus get up to 4 Special Issues
Sign up for Kiplinger’s Free Newsletters
Profit and prosper with the best of expert advice on investing, taxes, retirement, personal finance and more - straight to your e-mail.
Profit and prosper with the best of expert advice - straight to your e-mail.
What is the Google class action lawsuit about?
The case of Rodriguez v. Google LLC was originally filed in July 2020. The plaintiffs accused Google of continuing to collect user data despite those users expressly turning off data tracking settings in their Google accounts.
According to the class action lawsuit website for the case, “Google unlawfully accessed their [class action members’] mobile devices to collect, save, and use the data concerning their activity on non-Google apps that have incorporated certain Google software code into the apps.”
The plaintiffs allege that Google misrepresented the data privacy options that users have and that, because of Google’s near-omnipresence on the internet, users have no meaningful way of stopping the company from tracking their data.
In the original complaint filed in July 2020, the plaintiffs said that Google “intercepts, tracks, collects and sells consumer mobile app browsing history and activity data regardless of what safeguards or ‘privacy settings’ consumers undertake to protect their privacy.”
They further allege that this is true even if you don’t use Google-branded apps or devices, as “Google still tracks and compiles their communications by covertly integrating Google’s tracking software into the products of other companies.”
The plaintiffs argue that 70% of websites use Google Analytics. I couldn’t find a source to verify that number. But, according to GA4, a company that provides training and support for businesses using Google Analytics, 44 million websites use the data analysis tools, representing over 55% of all websites.
In either case, the plaintiffs’ argument about the difficulty of avoiding being tracked by the service still holds. “Other than staying off the internet entirely, there is no effective way for consumers to avoid Google Analytics and its surreptitious tracking.”
In short, the lawsuit argues that because of the widespread use of Google Analytics, which continues to track users’ activity and other data across both websites and apps, the company misrepresented the degree of control users have over what data is collected about them and when.
The jury agreed with the plaintiffs that this constituted an invasion of privacy, though it did not agree that Google violated users’ privacy with malice, oppression or fraud – a distinction that would have, potentially, allowed the court to demand “disgorgement” of the profits Google made by collecting that data.
As of now, Google denies all allegations and will be appealing the jury’s verdict. In a brief filed on Tuesday, Google’s legal defense team argued, among other things, that its disclosures and privacy policy statements are unambiguous and could not be misread. Specifically, the setting in question does not explicitly state that it revokes permission for the company to collect data for Google Analytics.
In other words, Google argues that users should have known that turning off “Web & App Activity” tracking in their Google account settings would not, in fact, stop Google from tracking web and app activity. During the trial, the plaintiffs countered that point by arguing that the language is intentionally vague and deceptive on this point.
How much does Google have to pay as part of the lawsuit?
While the plaintiffs initially sued for $31 billion in damages, the jury didn’t find Google liable on the third count of violating the CDAFA. But, for their liability on the two counts of privacy violations, the jury determined that Google has to pay $425 million. That includes approximately $247 million for members with Android devices and $178 million for members with non-Android devices.
After Google appealed the decision, the plaintiffs filed a motion asking the court to increase the payout to $2.36 billion. This amount would "disgorge" Google of the estimated net profits it made on the user data it gathered, the plaintiffs argued.
The final amount, if any, is still to be determined.
Who is eligible for the $425 million class action lawsuit and payout?
There are approximately 98 million members of the class action lawsuit. Specifically, those who might be eligible for a payout if Google’s appeal is rejected include individuals who meet the following criteria:
- Had a Google account that is “non-enterprise” or “non-Unicorn” (meaning a supervised account for users under 13).
- Turned the “Web & App Activity” or “supplemental Web & App Activity” setting turned off or paused at any point between July 1, 2016 and September 23, 2024.
- Despite turning off or pausing that setting, your data was still transmitted to Google from a non-Google branded app.
Can you protect your privacy online?
What this case highlights for users of the internet is that you should assume your data is always being collected by default.
Even if you have access to privacy settings on a particular app, website or service, there’s a good chance your data is still being collected, if not by the website itself, by the Google Analytics code embedded in approximately 55% to 70% of websites.
Given that reality, what can you do to reclaim some control over your privacy? Here are a few tips that aren’t perfect solutions, but can help:
- Limit the number of apps you download to your mobile devices. And, regularly uninstall apps that you no longer use.
- Make use of whatever privacy controls a website or app does offer. When you get that cookie notice upon landing on a website, look carefully for your options to turn off as many tracking settings as the website allows you to. Upon signing up for a service or downloading an app, go to the account settings and turn on any privacy settings that you can. Check back regularly for new privacy settings as these do change periodically.
- Use a virtual private network (VPN), a type of software that encrypts your online activity and obscures your location when browsing the internet.
- Be aware that even with all of these privacy settings enabled, there is still, more often than not, a lot of data about your online activity, devices and even location being collected and shared about you. Keeping this in mind can help protect yourself from scams and fraud by making you more alert to suspicious emails, texts or phone calls, even when they include personal information about you.
Related content
-
Dow Rises 313 Points to Begin a Big Week: Stock Market TodayThe S&P 500 is within 50 points of crossing 7,000 for the first time, and Papa Dow is lurking just below its own new all-time high.
-
The $3,000 Retirement Mistake Millions Make Each Year (And How to Avoid It)A little oversight or automation can keep money in your pocket.
-
January Fed Meeting: Live Updates and CommentaryThe January Fed meeting is a key economic event, with Wall Street waiting to see what Fed Chair Powell & Co. will do about interest rates.
-
How Drones Can Affect Your Insurance CoverageHow insurers are using aerial imagery to assess homes, the backlash from policyholders and how state regulators are trying to rein in the practice.
-
My First $1 Million: Risk Management Consultant, 55, Marlborough, Mass.Ever wonder how someone who's made a million dollars or more did it? Kiplinger's My First $1 Million series uncovers the answers.
-
Divide and Conquer: Your Annual Financial Plan Made Easy, Courtesy of a Financial AdviserOverwhelmed by your financial to-do list? Split it into four quarters and assign each one goals that connect to the time of year. It could be life-changing.
-
$100,000 Travel Emergencies You Don't See Coming and How to PrepareTravel emergencies can get expensive fast. Here's how to protect your wallet from the worst-case scenario.
-
The Financial Details Every Couple Should Share (Before There’s an Emergency)From passwords to policy numbers, having shared access to key accounts can prevent financial chaos when life throws a curveball.
-
I’ve Played 1,300-plus Golf Courses: These Are the 4 on My 'Must-Play' List for 2026These four luxury golf courses offer an extraordinary experience for players this year.
-
Your Post-Accident Survival Guide, From an Insurance ExpertAfter a car accident, stay calm and document everything to preserve the facts. Remember: You don't have to solve the problem — that's why you have insurance.
-
What to Check on Your Car Before a Winter StormWinter storms are expected soon. Get your vehicle ready now to avoid breakdowns, costly repairs and dangerous roadside surprises.
