About the Course
Introduction
This CLE webinar will provide an overview of automotive data collection happening today, related data privacy concerns they raise, and important cybersecurity takeaways. Key federal laws, including the Driver's Privacy Protection Act (DPPA) and analogous state laws, will be analyzed along with related consumer protection laws. The panel will also share compliance trends, cybersecurity controls, and incident response efforts that will help mitigate enforcement risk and litigation exposure.
Description
Technological integrations and advancements are improving user experiences, increasing productivity, and facilitating business transactions. But the convenience gained comes at the sacrifice of privacy. One rapidly evolving area of integration involves vehicles—specifically, telematics systems and license plate data collection. Data usage in these instances raises significant privacy and cybersecurity risks, exposing businesses to private litigation and government enforcement.
Modern vehicles collect, transmit, and monetize consumer data through telematics systems integrated with smartphones, social media, and third-party platforms. The Federal Trade Commission (FTC) is scrutinizing this data collection practice and business tied to them. States are also advancing regulatory and legislative efforts. In this evolving landscape, attorneys must help clients anticipate compliance obligations and adapt to heightened enforcement trends.
License plate data is another area of data collection raising privacy and cybersecurity concerns. The DPPA places disclosure limits on DMVs at the federal level, allowing disclosure of personal information only in a few permissible instances. Although commercial entities routinely obtain DMV data under these exceptions, the DPPA is now frequently cited in data privacy and cybersecurity litigation, in breach actions, or tied to automated license plate reader technology (ALPR). ALPRs are widely used commercially; examples include parking facilities, homeowners' associations, and private security operations. States have adopted laws similar to the DPPA.
Listen as our authoritative panel breaks down the automobile data ecosystem and the growing data privacy concerns surrounding telematics, ALPR, and downstream data sharing. Time will be devoted to the DPPA, analogous state statutes, and related consumer protection laws. The panel will also share compliance frameworks, contracting tips, cybersecurity controls, and incident response efforts that will mitigate risks related to automotive data collection.
Presented By
Mr. Booth advises in matters involving data privacy and cybersecurity issues, complex technology transactions, high-stakes investigations, compliance with federal and state employment statutes, the development of robust workplace policies, and business-critical reputational and crisis management matters. He is a Certified Information Privacy Professional/United States (CIPP/US) and a member of the International Association of Privacy Professionals (IAPP). Before joining Fisher Phillips, Mr. Booth practiced at a global law firm, where he represented organizations in proactive and reactive data privacy and cybersecurity matters and led teams through multi-jurisdictional regulatory probes. He began his career as a transactional attorney, advising clients on domestic and cross-border mergers & acquisitions, leveraged buyouts, and securities offerings. Mr. Booth regularly calls upon his familiarity with contract law when advising clients on the use, licensing, acquisition, and commercialization of data and technology. He also spent five years as a management consultant, where he applied his multidisciplinary background to help businesses navigate issues at the nexus of law, commerce, and public policy. He is adept at designing and deploying customized solutions that address his clients’ operational, financial, and reputational needs, while successfully advancing their broader strategic objectives. Throughout his career, Mr. Booth has represented clients across many industries, and is particularly familiar with the aerospace & defense, agricultural, education, energy, financial services, healthcare & life sciences, technology, and transportation sectors. In addition to his civilian career, he is an officer in the U.S. Navy Reserve, having served in both the intelligence and public affairs communities.
.jpg)
Mr. Hart works closely with organizations to navigate risk at the intersection of technology, data, and regulation, providing practical, business-oriented guidance on privacy, cybersecurity, artificial intelligence, and emerging technologies. He partners with clients—from startups to global enterprises—to design and implement compliance strategies, respond to data incidents, and manage investigations, all while helping them adapt to evolving frameworks such as the GDPR and CCPA. Mr. Hart is also a trusted advisor on AI and data governance, helping organizations translate complex regulatory requirements into actionable, real-world solutions. In addition to his advisory work, Mr. Hart represents clients in high-stakes disputes and government investigations, particularly those arising from data security incidents and regulatory scrutiny. He works alongside in-house teams, executives, and technical experts to guide organizations through complex challenges—from incident response through resolution—bringing a strategic, solutions-focused approach. A recognized leader in the field, Mr. Hart is a certified privacy professional (CIPP/US, CIPP/E, CIPM) and a frequent speaker and writer on privacy, cybersecurity, and AI-related legal developments.
-
This 90-minute webinar is eligible in most states for 1.5 CLE credits.
-
Date + Time
- event
Tuesday, June 16, 2026
- schedule
1:00 PM ET/10:00 AM PT
I. The automobile data ecosystem: data collection categories (geolocation, biometrics, behaviors, license plates) and the data collection chain
II. The DPPA framework: scope and permissible uses; risks and damages; enforcement/litigation trends
III. State laws and emerging statutory theories: state motor vehicle privacy statutes modeled after DPPA, related state privacy laws
IV. Telematics, ALPR, and data broker risk
A. ALPR collection and resale risk
B. Consent and notices required
C. Vendor contracting, downstream data sharing, related risks and protections
V. Litigation, regulatory scrutiny, and enforcement trends
A. Plaintiff strategies in DPPA and vehicle data cases
B. Federal and state regulatory investigations
C. Insurance coverage and indemnity considerations
VI. Unique cybersecurity and incident response considerations
A. Data security obligations for vehicle-generated data
B. Breach notification triggers and incident response
C. Third-party risk management
VII. Compliance and risk mitigation strategies: notices, consents, contractual safeguards, governance
The panel will address these and other key considerations:
- Understanding the data privacy concerns and security risks related to automobile data collection
- Actionable guidance on how to comply with federal and state laws
- Contracting and vendor management strategies aimed at mitigating enforcement and litigation exposure
- Governance and compliance recommendations, including consent and disclosure obligations
Related Courses
Predominance Analysis: Multistate Classes and Choice of Law When Advocating or Opposing Certification
Tuesday, June 30, 2026
1:00 PM ET/10:00 AM PT
Drafting Data and Cybersecurity Provisions in Third-Party Vendor Agreements: Limits to Liability, Indemnification
Thursday, May 28, 2026
1:00 PM ET/10:00 AM PT
Automobile Data Collection, Privacy, and Cybersecurity: License Plate DPPA Exposure, State Regulations, Litigation Risk
Tuesday, June 16, 2026
1:00 PM ET/10:00 AM PT
2026 Health and Welfare Plan Challenges
Tuesday, August 4, 2026
1:00 PM ET/10:00 AM PT
