Evidence And Education

Resources

Use our whitepapers, guides, and toolkits to understand tracker behavior, consent and GPC, remediation, and website privacy risk in practice.

BlogJune 5, 2026

If Your Site Still Uses Polyfill.io, It’s Now Phishing Your Customers

A critical credential-harvesting exploit is actively targeting websites that still load the hijacked, legacy polyfill.io script, tricking visitors with fake browser-level login prompts on trusted banking and e-commerce sites. Any credentials entered into this HTTP Basic Authentication box are sent directly to malicious actors, who also receive a header revealing exactly which website the user came from. While the original compatibility service was sold and weaponized in 2024, thousands of forgotten tags remain buried in website architectures; website owners must immediately audit their codebases and remove all references to polyfill.io to protect their users, while consumers should immediately close any unexpected login popups.

BlogMay 21, 2026

Retargeting Pixels and Privacy Law: What Marketing Teams Need to Get Right

Retargeting pixels transmit behavioral data to Meta, Google, TikTok, and other ad platforms with every page load. Under GDPR, CCPA/CPRA, and state health data laws, that transmission requires valid consent that most cookie banners do not actually collect. This post explains the exposure and what a compliant retargeting setup actually requires.

BlogMay 19, 2026

CMP cookie categories and opt-out checks: first-party vs third-party

Field guide for CMP admins: cookies, first-party vs third-party context, and cookieless vendor requests. Verify opt-out with the Network tab, not only the Cookies panel. When lingering storage is normal versus when telemetry still fires.

BlogMay 7, 2026

Understanding Session Replay: A Guide to Technical Privacy Management

Organizations must align their website’s technical execution with their privacy commitments, specifically regarding session replay technology. While these tools provide valuable user experience insights by logging real-time interactions via the Document Object Model (DOM), they create privacy risks if scripts execute before consent or capture unsubmitted data. To ensure integrity, privacy leaders should implement active controls such as conditional script loading, third-party script auditing, and local data masking. By synchronizing technical behavior with public disclosures and maintaining verifiable audit trails, organizations move beyond static policy to a model where website code serves as proof that privacy obligations are being met.

BlogMay 4, 2026

2-Part ECPA Analysis from Troutman Pepper

This two-part series from Troutman Pepper explores a major shift in the legal landscape: the move from state-level privacy disputes to federal class actions under the Electronic Communications Privacy Act (ECPA). Part One analyzes the "Crime-Tort" formula—a legal strategy that leverages a company's own privacy disclosures as the primary evidence for federal wiretapping claims. It details how recent court rulings have turned technical inaccuracies into a nationwide litigation risk that bypasses traditional state-border defenses. Part Two shifts from legal theory to real-world data, examining a surge in filings across the country. The analysis highlights how discrepancies between a website’s technical behavior and its public-facing promises—particularly regarding consent and tracking—are driving a new wave of litigation. It concludes with strategic recommendations for aligning technical operations with legal disclosures to mitigate these emerging risks.

BlogApril 27, 2026

Beyond the Banner: Closing the Technical Gaps in Consent Management

A consent banner is just a user interface, not a compliance program. Regulators are looking past the "Reject" button to verify that data transmission actually stops at the network layer. Moving from cosmetic privacy to technical verification is the only way to close the gap between your stated policy and the digital trail of non-compliance created by misconfigured trackers...

BlogApril 23, 2026

Managing Meta Pixel Data Exposure: A Technical Governance Perspective

Marketing tools like the Meta Pixel often operate outside traditional server-side controls, creating a dangerous "governance gap" where client-side scripts transmit sensitive data in real time—regardless of what your privacy policy promises. In regulated industries like healthcare and finance, this isn't just a technical glitch; it’s a massive compliance liability.

BlogApril 21, 2026

Outsourced Web Design, In-House Liability: Is Your Agency Building a Legal Time Bomb?

When you outsource a website redesign, you can delegate the labor, but you can’t delegate the legal liability. Between "piggybacking" scripts hidden within third-party tools and "Shadow IT" tags added post-launch, your site can easily become a playground for unauthorized data collection.

BlogApril 17, 2026

You Still Can’t See or Control Your Website

Companies believe they have control over data collection through policies, consent tools, and governance, but in practice, they lack visibility into what actually executes in the browser. Modern websites are dynamic and constantly changing, creating a growing gap between intended behavior and real data flows. Without continuous, real-time insight and control at the point of collection and execution, organizations are operating on assumptions, leaving them exposed to unseen risk and liability.

BlogApril 17, 2026

Is Your Website Ignoring the Digital Handshake?

Global Privacy Control (GPC) has evolved from a niche browser setting into a critical legal mandate that regulators now enforce through "outside-in" technical audits. It is no longer enough to have a compliant privacy policy; organizations must ensure their website’s code actually honors these automated opt-out signals at the network layer to avoid costly settlements and misrepresentation charges. Lokker bridges this gap by providing real-time, network-layer enforcement that blocks unauthorized data flows and generates the technical evidence required to prove that a company’s privacy promises match its actual website behavior.

Quarterly ReportJanuary 21, 2026

Quarterly Risk Report – Q1 2026

The digital privacy landscape is in constant motion, shaped by new litigation, shifting regulations, and rapid changes in tracking technology. This quarter’s report delivers a clear, data-backed look at where the risks are rising and how businesses can respond before they face legal or reputational fallout.

BlogOctober 22, 2025

Check out Marsh’s latest webinar featuring Troutman Pepper and LOKKER!

We were proud to join our partners at Marsh and Troutman Pepper for an in-depth discussion on evolving privacy regulations and the growing risks surrounding website tracking technologies. Hear from our CEO, Ian Cohen, alongside leading experts in privacy law and cyber-risk, as they discuss practical strategies organizations can take today to mitigate regulatory exposure […]

Quarterly ReportAugust 13, 2025

Quarterly Risk Report – Q3 2025

BlogMay 6, 2025

Privacy Teams

Cross-Functional Issues with Data Privacy As privacy regulations rapidly evolve and enforcement intensifies, organizations are discovering that managing data privacy cannot be confined to the legal department alone. Cross-functional collaboration—between legal, engineering/IT, marketing, and privacy teams—is no longer optional. This outlines the key challenges, misalignments, and practical strategies organizations can adopt to build aligned, effective […]

BlogApril 15, 2025

Understanding VPPA Privacy Risks

Background In 1988, while being confirmed as a Supreme Court justice, Robert Bork’s video rental records were published by the Washington City Papers. Soon after, Congress passed the Video Privacy Protection Act of 1988. This is a U.S. federal law meant to protect the privacy of consumers' video rental history. It prohibits video service providers […]

Press ReleaseApril 4, 2025

Honda Pays $632K Over Privacy Claims

On March 7, 2025, the California Privacy Protection Agency (CPPA) reached a settlement with American Honda Motor for violating the California Consumer Privacy Act (CCPA). The ruling is based on Hondas practices in handling consumer privacy requests and its sharing of personal information for advertising. This ruling from the CCPA makes it clear that simply […]

Press ReleaseMarch 25, 2025

LOKKER & Bitsight Partner to Meet Insurance Providers’ Growing Demand for Privacy Risk Analysis

The partnership makes LOKKER’s privacy risk data available to Bitsight’s cyber insurance customers for both privacy risk analysis and suggested steps for remediation. Redwood City, Calif. – March 25, 2025 – LOKKER, provider of online data privacy and compliance solutions for enterprises, and Bitsight, the global leader in cyber risk management, today announced a partnership […]

BlogMarch 24, 2025

The New York Health Information Privacy Act

The New York Health Information Privacy Act (NY HIPA) is a new law aimed at strengthening the privacy and security of health-related information for New York residents. Enacted on January 22, 2025, NY HIPA introduces comprehensive regulations governing the collection, processing, and sharing of health data. As of now, this bill has passed the New […]

Press ReleaseFebruary 11, 2025

How Will International Politics Complicate US Access to AI? [That DOS Won’t Hunt Podcast]

International politics can disrupt companies’ AI strategies, shaping their ability to stay competitive. The scale of these disruptions—and the negotiations to mitigate them—hinges on how organizations adapt. Could the global demand for AI lead to unexpected alliances, much like those formed in the pursuit of fossil fuels? Is there a way forward for companies facing […]

Press ReleaseJanuary 30, 2025

Privacy Laws Are Tightening – Don’t Let Consent Failures Put Your Banking Website at Risk

Privacy laws are tightening, and weak consent practices can put banking websites at risk of fines and lost customer trust. This article authored by Lokker CEO Ian Cohen and published in FinTech Bloom breaks down the impact of evolving regulations like GDPR and CCPA, common consent failures, and how to fix them with better compliance […]

Press ReleaseDecember 30, 2024

2025 Privacy Predictions for Healthcare

Staying ahead of privacy laws and consumer expectations isnt just about compliance; its about securing patient trust and staying competitive in an evolving industry. Dont miss the strategies to prepare for 2025—read the full article to ensure your organization is ready.

Press ReleaseDecember 20, 2024

The Hidden Drivers of Website Data Collection—and How to Take Control

Online privacy is gaining momentum in the U.S. as new regulations and enforcement actions proliferate. By 2025, eight additional state privacy laws will take effect, bringing the total to 19 comprehensive state-level privacy regulations. This push for tighter data oversight is essential—far more data is being collected and shared than most people, including tech professionals, realize.

Press ReleaseDecember 13, 2024

Cybersecurity: Why it’s not just about hackers anymore

In a recent SecurityInfo Watch article, Lokker CEO Ian Cohen emphasizes a critical aspect of cybersecurity that often gets overlooked: the unintentional sharing of data without consent.

Press ReleaseDecember 3, 2024

Healthcare Website Privacy Risk Basics – What You Need to Know

This article explains how these tools work, their impact on data privacy, and strategies to mitigate risks while ensuring compliance with healthcare privacy regulations.

Press ReleaseNovember 26, 2024

Most Websites Get Consent Management Wrong—Is Yours One Of Them?

In this article for Forbes, Lokker CEO Ian Cohen discusses the common mistakes companies make with consent management on websites, particularly regarding cookie consent.

Press ReleaseOctober 31, 2024

Lawsuits Accuse LinkedIn of Tracking Users Health Info

LinkedIn faces three class action lawsuits in California, accused of unlawfully tracking users health information without consent. The lawsuits allege LinkedIn gathers sensitive health data via tracking pixels, sparking serious privacy and discrimination concerns. Lokker CEO Ian Cohen shares insights into how ad tech complexities enable this and advises healthcare organizations on protecting themselves against […]

Press ReleaseOctober 1, 2024

Protect Your Business from the Consequences of Cookie Consent Failures

Cookie consent management is crucial for businesses as privacy laws tighten. Many think using a consent management platform (CMP) ensures compliance, but they often ignore other data collection methods like pixels and tags. This oversight risks consumer deception and legal action. In this article for Retail Touchpoints, Ian Cohen, Lokker CEO, stresses that retailers must […]

Press ReleaseSeptember 26, 2024

How To Avoid Liability When Using Cookie Consent Managers

In this article for Law360, Lokker CEO Ian Cohen highlights how a business could face legal trouble if cookie consent tools arent set up correctly. With evolving privacy laws, relying on consent managers alone won’t cut it. Misconfigured banners, hidden trackers, and outdated settings can lead to lawsuits. This article shares practical advice with attorneys […]

Press ReleaseSeptember 20, 2024

A look at Lokkers new Consent Management Solution

Lokker CEO Ian Cohen sat down with the IAPP to talk about the launch of our new consent management solution. He discusses Lokkers innovative approach and how it compares to traditional consent management platforms. Understanding advancements in privacy technology and the gaps that remain can be crucial for businesses looking to enhance their data protection […]

BlogSeptember 19, 2024

[Webinar] Meeting the Moment: The New Normal in Privacy

Why is Privacy So Challenging? LOKKER CEO Ian Cohen, along with Foley attorneys Jennifer Urban and Aaron Tantleff, presented at the Midwest Cyber Security Alliance to discuss the significant shifts in data privacy that are creating new challenges for businesses. The discussion covered key privacy hurdles, including: This session explores these challenges from legal, marketing, […]

Press ReleaseSeptember 10, 2024

LOKKER launches consent management solution

In this article, Security Info Watch covers Lokkers new consent management solution, which fixes some of the traditional issues with consent managers. Read the full article to learn how to: Read the full article here.

Press ReleaseSeptember 10, 2024

LOKKER Launches Consent Management Solution

REDWOOD CITY, Calif. , Sept. 10, 2024 /PRNewswire/ LOKKER, provider of online data privacy and compliance solutions for enterprises, today released a new consent management solution available in its Privacy Edge™ Platform. This builds on LOKKERs earlier release of its Consent Verification tool, which allows businesses to check whether their existing consent management platform is configured correctly.

BlogSeptember 9, 2024

Don’t Make These Common Mistakes When Setting Up Your Consent Management Tool

Avoid these common mistakes businesses make when setting up Consent Management Platforms (CMPs), from inconsistent web scanning to misclassifying cookies. Avoid non-compliance, protect user data, and maintain trust by ensuring your cookie consent banner meets privacy regulations.

BlogSeptember 9, 2024

Why Your Consent Banner Might Be Out of Compliance—And You Don’t Even Know It

This article highlights the technical limitations of Consent Management Platforms (CMPs), revealing how many fail to block cookies or track user consent as promised fully. It provides insights into hidden compliance risks and offers guidance on how companies can ensure their consent banners meet privacy regulations.

BlogSeptember 9, 2024

Dark Patterns in Consent Management: Deceptive Tactics and Their Costly Consequences

Explore the deceptive use of dark patterns in cookie consent banners, including how these tactics manipulate users into giving consent. It also discusses the costly consequences for businesses, including violations of privacy laws and the erosion of user trust.

Press ReleaseSeptember 9, 2024

LOKKER Launches New Feature to Bolster Consent Verification Compliance

The Consent Verification tool came about when a LOKKER report revealed 90% of websites loaded cookies before any interaction with the consent banner.

BlogSeptember 6, 2024

The 8 Best Data Privacy Software for 2024

Implementing proper data privacy practices is more than just a legal obligation; its a key avenue for enhancing consumer trust. Find out the best data privacy tools to keep your organization safe.

Press ReleaseSeptember 4, 2024

LOKKER CEO, Ian Cohen, Interviewed on How IT Leaders can Address Online Privacy Risks

This Q&A covers how IT leaders specifically can address online privacy risks in a complex landscape shaped by varying state laws and privacy regulations. Ian Cohen, CEO of LOKKER, emphasizes the importance of using real-time monitoring tools and unified dashboards to manage privacy concerns and reduce the risk of lawsuits. He discusses the challenges posed […]

WhitepaperSeptember 3, 2024

Research Report: Website Privacy and Compliance Challenges

By publishing this report, we aim to inform website owners about privacy concerns, potential repercussions, and mitigation strategies. We also strive to underscore the necessity for increased governance within companies, and tools that extend beyond typical consent management to ensure a safer and more transparent online experience for users.

BlogAugust 29, 2024

Common Data Privacy Challenges Companies Face in 2024

Examine the evolving challenges of data privacy compliance in 2024, addressing the complexities of third-party software, regulatory landscapes, and emerging technologies. This article explores best practices for companies to safeguard user data while adapting to new legal and technical realities.

Press ReleaseAugust 29, 2024

Privacy Oversights: Why Your Tech Stack Needs an Update

The article by Ian Cohen, CEO of LOKKER, emphasizes the importance of updating tech stacks to address privacy oversights caused by unauthorized data tracking and misconfigured consent tools. It highlights common issues with privacy tools, such as cookies loading before consent and outdated banners, which leave companies vulnerable to legal risks. IT leaders must adopt […]

Press ReleaseAugust 28, 2024

Is Your Consent Banner Giving You a False Sense of Security?

Many consent banners give organizations a false sense of security, as they often fail to properly block tracking technologies or mislead users with “dark patterns.” This leaves companies, especially in healthcare, vulnerable to legal risks under privacy regulations like UDAAP. Technical errors, misconfigurations, and deceptive designs in consent management platforms (CMPs) can unintentionally expose user […]

BlogAugust 20, 2024

Comprehensive Guide to Web Privacy Laws and Regulations

This guide provides an overview of privacy laws often cited in web tracker lawsuits. We've noted the laws that include a private right of action, which allows individuals to file lawsuits when they believe their privacy rights were violated.

BlogAugust 14, 2024

Digital Marketing and Privacy: What You Need to Know

Data privacy has become a convoluted challenge for digital marketers. Digital platforms have streamlined the process of gathering data and insights at an unprecedented level. However, consumers (and governments, for that matter) are more concerned about the use of their data than ever before.

Press ReleaseAugust 2, 2024

How Companies Can Comply With The My Health My Data Act

The My Health, My Data Act (MHMDA), effective in Washington state, extends privacy protections to personal health data beyond traditional healthcare settings. Companies must ensure compliance by rethinking data collection practices, expanding transparency, and gaining explicit consent for sensitive information. This includes updating privacy policies, implementing opt-out options, and safeguarding data with strong security measures. […]

Press ReleaseJuly 24, 2024

LOKKER Launches New Web Privacy Risk Summary for Insurers

Provides insurers the ability to generate on-demand, real-time web privacy risk reports to share with their insureds to reduce related fines, lawsuits, and breaches REDWOOD CITY, Calif., July 23, 2024 /PRNewswire/ LOKKER, provider of online data privacy and compliance solutions for enterprises, today released a new privacy solution for insurers: the ability to share on-demand web privacy risk […]

Press ReleaseJuly 9, 2024

Online Privacy in the Age of Data Brokers

This article from Lokker CEO Ian Cohen highlights how data brokers collect, buy, and sell personal information without user consent, often resulting in privacy risks. It explains how companies use data for targeted ads and the hidden dangers this poses, such as identity theft and discrimination. The piece stresses the importance of increased regulation, user awareness, and proactive privacy tools to protect individuals’ data from being exploited by brokers in today’s digital landscape.

Press ReleaseJune 18, 2024

Are Consent Banners Really Protecting Consumer Privacy?

Cookie consent tools were created to comply with privacy laws like GDPR and CCPA by obtaining user permission before data sharing. However, recent research reveals that many of these tools are malfunctioning. Issues include cookies loading before consent, missing banners on certain pages, and outdated information.

BlogJune 15, 2024

Three New Privacy Laws Go Into Effect, Including Texas and Oregon

Below are summaries of 3 new privacy laws in the news this week. The first two in Texas and Oregon are going into effect soon on July 1, 2024. However, enforcement comes later. Read more.

Press ReleaseJune 4, 2024

LOKKER Unveils Consent Verification

LOKKER, provider of online data privacy and compliance solutions for enterprises, today released Consent Verification, a new tool in LOKKERs Privacy Edge Platform that gives businesses a simple way to check whether their consent banners are properly configured and working correctly.

BlogMay 14, 2024

What’s Behind the Surge of Wiretapping Lawsuits?

The surge in lawsuits against companies due to third-party data collection on their websites comes from the growing concern over online privacy and data protection. Some attorneys see this as a new opportunity to provide their services. These lawsuits are often filed under wiretapping statutes, such as the federal Wiretap Act and state equivalents, which prohibit the interception of electronic communications without consent.

BlogMay 14, 2024

Consent Banner Compliance: Is Your Website's Consent Banner Meeting Privacy Regulations?

We're thrilled to introduce a new feature on our Privacy Edge platform: consent verification. We recently published a research report and uncovered something quite striking: over 90% of websites load cookies before any interaction with the consent banner (like accepting or rejecting all cookies), with an average of 18 third-party cookies loading before any interaction occurs.

Press ReleaseMay 3, 2024

Ian Cohen, CEO of Lokker, Discusses the Latest Online Tracking Concerns on the Healthcare Info Security Podcast

Despite a slight decrease in the past year, nearly one in three healthcare firms still utilize technologies like Meta Pixel, despite regulators warnings about privacy infringements. These trackers enable companies to gather and distribute individuals sensitive health data to advertisers and marketers, sparking significant privacy apprehensions.

Press ReleaseMay 2, 2024

The Top 4 Web Privacy Challenges for Retailers

Read LOKKER CEO Ian Cohens latest article in Total Retail, titled The Top 4 Web Privacy Challenges for Retailers. The article emphasizes the importance of protecting customer data and complying with evolving privacy laws in retail.

Press ReleaseMay 2, 2024

The Rising Stakes of Healthcare Data Privacy in 2024: The Need for Practical Guidance

The article The Rising Stakes of Healthcare Data Privacy in 2024: The Need for Practical Guidance, authored by LOKKER CEO Ian Cohen for MedCity News, highlights the growing importance of data privacy in the healthcare sector.

BlogApril 19, 2024

Cerebral fined $7 million by the FTC, New Colorado Law Protects Neurological Data, a Federal Privacy Bill is Gaining Traction, and More

This week has been buzzing with privacy-related news, especially on the legislative front. The U.S. House Committee on Energy and Commerce Innovation, Data and Commerce Subcommittee hearing discussed the drafted legislation for a new comprehensive federal privacy law, and we saw two state laws passed in Nebraska and Maryland, pending signatures from their Governors.

Press ReleaseApril 12, 2024

2023 in Review: The Rise of Healthcare Data Privacy Regulations

This article written for HealthIT Answers delves into the impactful changes in healthcare data privacy regulations enacted in 2023, notably spotlighting the Washington My Health My Data Act (MHMDA). This legislation mandates explicit opt-in consent for gathering specific consumer health data and empowers consumers to litigate against companies for breaches. Key highlights encompass the necessity of a distinct Consumer Health Privacy Policy on company websites and the mandate for opt-in consent when sharing data with third parties.

Press ReleaseApril 8, 2024

Striking a Balance: Privacy in the Age of Location Tracking

This article, written by LOKKER CEO Ian Cohen for CPO Magazine, delves into the privacy concerns associated with location tracking and individuals struggles in managing their personal location data.

Press ReleaseApril 5, 2024

Lokker Research Featured in the HIPAA Journal Article One-third of Healthcare Websites Still Use Meta Pixel Tracking Code

The article One-Third of Healthcare Websites Have Meta Pixel Tracking Code, featuring research from Lokkers recent Online Data Privacy Report, highlights the widespread use of the Meta Pixel on healthcare websites, posing risks of HIPAA violations and patient privacy breaches. It focuses on the discovery that 33% of the top 100 U.S. hospitals have the […]

Press ReleaseApril 5, 2024

Lokker Research Featured in Marketing Drive Article Privacy tools fall short: Here’s what the numbers say

The article Privacy tools fall short: Heres what the numbers say draws on Lokkers recent Online Data Privacy Report to shed light on significant gaps in current online privacy protections. Here are the key findings:

Press ReleaseApril 3, 2024

Location tracking and the battle for digital privacy

Check out Lokker CEO Ian Cohens latest article, Location tracking and the battle for digital privacy, recently published in Help Net Security. It sheds light on significant privacy concerns related to location data collection.

Press ReleaseApril 2, 2024

Report: LOKKER’s Analysis of More Than 3,400 Websites Reveals Meta Pixel Still on 33% of Healthcare Websites, with 12% of the S&P 500 Showing Likely Privacy Violations

New Research Finds Serious Privacy Risks as Compliance is Getting More Complicated, Highlights Urgency for Businesses to Protect Consumers’ Data with Better Tooling

Press ReleaseApril 2, 2024

LOKKER Research Highlighted in SecurityInfo Watch article, LOKKER: Serious online consumer data privacy risks in S&P 500, vertical industries

The article Serious Online Consumer Data Privacy Risks in SP 500 Vertical Industries published in Security Info Watch features data from our recent Online Data Privacy Report, which found significant privacy risks linked to companies collection and use of consumer data across various sectors.

BlogApril 2, 2024

Website Privacy Audit: Steps Companies Should Take

Our latest comprehensive analysis on “Website Privacy and Compliance Challenges” is now available. While there are LOTS of interesting data in this report, it also highlights actions for web site owners in the continuous process that is privacy compliance.

BlogMarch 29, 2024

Webinar: Privacy Compliance & Third-Party Tracking: An Ongoing Challenge

Listen to a lively discussion between Lokker's CEO Ian Cohen and FPF's CEO Jules Polonetsky on the current state of online privacy, including the prevalent privacy risks and compliance challenges that companies face today.

BlogMarch 1, 2024

Biden Issues Executive Order to Protect Sensitive Data, $23 Million Tax Act Settlement, FTC Fines Avast $16.5 Million, and More.

This week, the privacy ecosystem has been buzzing with news ranging from the serious to, if we’re being honest, a little strange. Here's what we're keeping an eye on this week.

Press ReleaseFebruary 14, 2024

LOKKER Launches First Feature to Notify Companies When Their Websites Are at Risk of Violating Privacy Laws

LOKKER, provider of online data privacy and compliance solutions for enterprises, introduces a new feature included in its Privacy Edge™ software suite. LOKKER now gives companies a solution to monitor and remediate potential web privacy and compliance violations such as HIPAA, the Video Privacy Protection Act (VPPA) and state wiretapping laws across their portfolio of websites.

BlogFebruary 13, 2024

Find Out Whether Your Website Is Breaching VPPA, HIPAA, and Other Privacy Regulations in Minutes

LOKKER is excited to announce the launch of a new critical privacy alert feature in their Privacy Edge platform that makes it extremely easy to tell if your site is in violation of prominent privacy laws, including the VPPA and HIPAA.

BlogFebruary 3, 2024

This Week’s Senate Hearings on Child Online Safety Underscore Need for A Higher Standard of Care For Online Privacy

Senate hearings this week brought 5 key tech executives to Washington including Meta, Snap, Discord, X and TikTok to answer questions about harmful data collection and manipulation of children’s online experiences.

BlogNovember 30, 2023

Sony Settles for $16 Million Showing Web Tracker Lawsuits Continue to Expand

Over 100 Video Privacy Protection Act (VPPA) cases brought for unauthorized use of web trackers. Protect your company from web tracker risks.

Press ReleaseSeptember 13, 2023

Catch LOKKER CEO Ian Cohen on the What The Hack Podcast

Tune in as Ian talks with the hosts about the technological challenges of companies really protecting their customers privacy, not to mention the new (and complex) privacy compliance requirements in the US.

BlogAugust 10, 2023

Streamline Data Protection Assessment Requirements With Privacy Edge

Privacy Edge software by LOKKER can be a helpful tool to assist in the DPA process by streamlining and enhancing the assessment workflow.

BlogJune 30, 2023

Webinar | Protect Your Clients’ Data From Unwanted Third-Party Tracking

In this webinar, Jeremy Barnett, Chief Commercial Officer of LOKKER, and Al Saikali, Partner and Chair of the Privacy and Data Security Practice at Shook, Hardy and Bacon, discuss the issues and risks surrounding third-party tracking and its implications for companies from both a legal and regulatory perspective.

BlogJune 28, 2023

Five Issues With How We Approach Web Privacy, and How to Fix It

Protecting customers’ privacy online is getting increasingly complex. Companies are trying to balance complying with a patchwork of state and industry-specific laws against website technology that, at its core, encourages sharing information with other parties. Here are five reasons the approach to website privacy today is broken and a few recommendations to fix it.

BlogJune 23, 2023

What You Need to Know About the Colorado Privacy Act and Connecticut Personal Data and Online Monitoring Act

Two new state privacy laws, the Colorado Privacy Act (CPA) and the Connecticut Personal Data Privacy and Online Monitoring Act (CTDPA), both go into effect and are enforceable on July 1, while the California Privacy Acts went into effect on January 1, 2023, will be enforceable on July 1, 2023. Is your business ready for these laws?

BlogJune 2, 2023

Apple’s got it exactly right!

Companies need the equivalent to protect their customers. LOKKER does that.

Press ReleaseMay 23, 2023

Web Privacy Risk Evaluation Finds Almost One-Third of the S&P 500s Websites Are at Significant Risk of Online Data Privacy Violations

LOKKERs Web Privacy Risk Score™ Reveals Half Received Failing Grades for Consent Practices, Critical Threat as Class-Action Lawsuits and States Privacy Laws Increase

BlogMay 15, 2023

Protect Your Website from Privacy Risks: Insights from Scanning the SP 500 Websites

Alarmingly, we found significant privacy risks on 30% of SP 500 websites and learn how to safeguard your website from common privacy threats. Implement these tips to protect yourself and your company today.

Press ReleaseApril 28, 2023

Interview of LOKKER CEO, Ian Cohen, Featured in Insurance Business America article How well do your clients know their data privacy risks?

LOKKER CEO Ian Cohen explains how class-action suits and regulatory measures are putting more pressure on organizations to protect their customers privacy on public-facing company website. Ian explains how LOKKER has developed a way for insurers to identify and quantify this web privacy risk to aid in the underwriting process.

Press ReleaseApril 18, 2023

LOKKER Finds One-Quarter of the Largest 1,000 Healthcare Organizations’ Websites Are at Significant Risk for Online Data Privacy Violations

LOKKER’s Web Privacy Risk Score Reveals Common Consumer Data Privacy Risks in the Healthcare Sector as Class-Action Lawsuits Are on the Rise. LOKKER’s findings uncover great risk to consumers’ personal health information , with 26% of healthcare organizations’ Web Privacy Risk Scores flagged as above 335, and of those, more than 100 scored above 500, which indicates significant risk according to LOKKER.

Press ReleaseMarch 28, 2023

LOKKER Unveils new Web Privacy Risk Score™ to Help Organizations Measure and Mitigate Online Privacy Threats

LOKKERs Web Privacy Risk Score is a first-of-its-kind measure that quantifies a companys potential risk of privacy violations pertaining to the collection and sharing of customers online information.

BlogMarch 21, 2023

Federal Trade Commission Outlines How Pixel Tracking Can Share Sensitive Health Data after Recent Regulatory Actions

In recent months, the Federal Trade Commission has taken action against two digital health platforms; GoodRx and BetterHelp. Both actions responded to the misuse of hidden pixels sharing sensitive health data from their websites without their visitors’ consent.

WhitepaperMarch 7, 2023

Online Data Privacy Report March 2023

Our report dives into our web privacy research results and further outlines actions that companies and insurance agencies need to take to protect themselves in an evolving web privacy ecosystem.

Press ReleaseJanuary 25, 2023

LOKKER research featured in Consumer Data Bonanza Over Cyber Weekend

Research and insights from LOKKERs 2022 Holiday Shopping Data Privacy Report were the basis for the article in Multichannel Merchant. The report looked at the top 100 e-commerce websites from Thanksgiving to Cyber Monday to see how many trackers were present, tracking visitors behavior and collecting their data. LOKKER Chief Commercial Officer, Jeremy Barnett, also […]

Press ReleaseJanuary 25, 2023

LOKKER mentioned in Clinic Reports Tracking Pixel Breach Involving 3rd Party

BayCare Clinic in Wisconsin reported a data breach to the U.S. Department of Health and Human services as a result of patient data being exposed from the use of online tracking pixels. This article featured in HealthCare Info Security referenced LOKKERs study of pixels and trackers in the healthcare industry, and our findings that more than 2,500 healthcare provider websites use these tools.

WhitepaperJanuary 25, 2023

2022 Holiday Shopping Data Privacy Report

LOKKER conducted a study of the Top 100 e-commerce sites in the U.S. to determine how they used trackers, pixels, and cookies to collect, analyze, share, sell, and resell our personal information. The takeaway: shoppers unknowingly shared their personal data through a variety of web tracking technologies this holiday season.

Press ReleaseJanuary 24, 2023

Research: LOKKERs Analysis of the Top 100 U.S. E-commerce Websites Finds Significant Data Privacy Risks for Consumers During the 2022 Holiday Season

LOKKER evaluated the top 100 e-commerce sites in the U.S., from Thanksgiving through Cyber Monday, examining how consumer data was collected, shared and sold during the peak 2022 holiday shopping days.

Press ReleaseJanuary 10, 2023

LOKKER Announces Advisory Board of Nationally Recognized Cybersecurity and Data Privacy Leaders

Former U.S. Secret Service Chief of Staff, Homeland Security Senior Counsel, and Attorney General of Vermont Bring a Wealth of Experience in Cybersecurity and Data Privacy Issues

Press ReleaseJanuary 10, 2023

Where is your website visitors’ data really going?

In this article for Security magazine, LOKKER CEO Ian Cohen explores, where website data is going and the risks that sharing it poses to consumers and companies alike.

Press ReleaseJanuary 2, 2023

Blocking Cookies is Insufficient

Despite the time and effort firms have spent implementing cookie consent notifications, these arent doing enough to protect businesses or their consumers from the recent wave of privacy lawsuits and regulatory fines, which are increasing in number and quantity.

Press ReleaseDecember 14, 2022

LOKKER research featured in HIPAA Journal, Telehealth Websites are Transmitting Sensitive Health Information to Big Tech Firms

After a recent study by the Markup found that the majority of telehealth providers share their users sensitive information, LOKKER CEO Ian Cohen weighs in on how and why sensitive data is being shared inadvertently, online every day in this article featured in HIPAA Journal.

BlogDecember 6, 2022

New Bulletin by OCR Warns Online Tracking Technologies May Violate HIPAA

The Office of Civil Rights (OCR) at the Department of Health and Human Services Issue a Bulletin to Warn HIPAA-Protected Entities that Online Tracking Technologies May be Sharing ePHI

Press ReleaseDecember 1, 2022

Privacy Edge PRO Recognized as an Infosec product of the month

LOKKER is proud to be recognized by Help Net Security on their list of InfoSec products of the month for November 2022. Privacy Edge™ PRO, our latest privacy solution that allows companies like cyber insurers, privacy attorneys and eDiscovery firms to quickly identify and mitigate privacy threats across thousands of client websites in one […]

BlogNovember 30, 2022

Data Privacy – Individuals Companies Waking up to the Threat

Americans are starting to pay more attention to these privacy-related issues in the digital world. It feels like we are reaching some sort of tipping point. Why? Why now? And how will these changes in perception and expectation affect American companies?

Press ReleaseNovember 22, 2022

AGs Urge Apple to Tighten Health Privacy, Security in Apps

Ten state attorneys general sent a letter to Apple urging the tech giant to address privacy and security gaps in third-party applications available on the App Store that track, collect or store reproductive health data in light of the overturning of Roe vs. Wade.

Press ReleaseNovember 16, 2022

LOKKER Launches Privacy Edge PRO™ to Help Companies Identify Cyber Threats Across Large Portfolios of Web Properties and Comply With Data Privacy Laws

LOKKER, provider of data privacy and compliance solutions for the enterprise, today announced the availability of LOKKER Privacy Edge PRO™, a cloud-based software solution that automates the rapid analysis of thousands of websites; identifies specific trackers, pixels and cookies; and alerts website owners when their customers’ personal information is at risk.

BlogOctober 25, 2022

Why The Web Browser Is A Companys Greatest Vulnerability

LOKKER recently analyzed more than 170,000 websites to get better understand the scope and scale of web privacy risks that exist, and published the findings in the second edition of LOKKERs biannual Online Data Privacy Report, published in October 2022.

WhitepaperOctober 19, 2022

Online Data Privacy Report

LOKKER scanned 170,000 websites to uncover the scale and scope of web privacy risks and found more than 1.5 million privacy risks lurking on websites. Download the research report to learn more.

BlogSeptember 14, 2022

Trackers, Pixels Tags – Who’s Exploiting Your Website?

Facebook pixels, Twitter links, advertising cookies– most of these third-party scripts are also trackers that collect customer data and share it with a host of downstream partners. Join us for a deep dive into browser privacy risks and the emerging privacy laws that could wreak havoc with your web ops.

BlogAugust 24, 2022

Privacy Regulations Are Heating Up

There’s been significant movement on the privacy regulation front in the past few weeks. We’re here to break it down for you, so that if you’re impacted, you can prepare and take action.

BlogJuly 10, 2022

Data Compliance in 2024: Are You Doing Enough to Protect Your Customers Data?

Last spring, KPMG conducted a survey, “Corporate data responsibility: Bridging the consumer trust gap,” which digs into the sentiments and behaviors of both the general population and business leaders when it comes to data protection and privacy.

BlogJuly 10, 2022

LOKKER Web Privacy Tools [Video]

Privacy is a team effort. Give your team the power of visibility and control with LOKKER. LOKKERS web privacy platform empowers all stakeholders marketing, information security, legal and executive teams with a solution to make their website fast, compliant, private and safe.

BlogJuly 3, 2022

Lokker’s All New Guide to Privacy Terminology

To help us all better understand what we’re dealing with this Data Privacy Week, we’ve decided to create a clear and simple explanation of the web

WhitepaperJune 13, 2022

Beyond Consent – Online Privacy Needs Better Tech

In this report, we’ll share the latest insights of Lokker’s Privacy Edge™ analysis of 90,000+ websites across 11 industry segments and the trends that are impacting customer data privacy.

BlogDecember 10, 2021

Cyber Privacy Risk Management Survey [INFOGRAPHIC]

We surveyed 100 IT leaders to see how they managed client-side user data access by third parties and discovered widely accepted operational practices that seem at odds with common sense privacy standards.

BlogJuly 6, 2021

How Does AI Invade Privacy?

It’s easy to compartmentalize the idea of digital privacy. “Whatever,” we may think. “No one is interested in my life.” Then we watch something like The Social Dilemma that explains how companies — and Russian hackers — use AI

BlogJuly 4, 2021

Surveillance Ad Tech Web Privacy

According to this highly useful resource page from the IAPP, most international privacy laws mandate that companies give their users the right to access, correct, delete, and opt-out of any personal