Rosie Moss

Rosie Moss is an associate in the firm’s Washington, DC office. She is a member of the Data Privacy and Cybersecurity Practice Group and the Technology and Communications Regulation Practice Group.

Rosie advises clients on a wide range of data privacy and technology regulatory issues, including emerging artificial intelligence compliance matters. She assists clients in complying with federal and state privacy laws and Federal Communications Commission (FCC) regulations. Rosie also maintains an active pro bono practice.

Contact:

FTC Alleges OkCupid Data Sharing Amounted to a Deceptive Practice

By Lindsey Tonsager, Jayne Ponder & Rosie Moss on April 21, 2026

Posted in Federal Trade Commission

The Federal Trade Commission (FTC) announced a settlement with dating app operator OkCupid and its affiliate Match Group Americas (Match), resolving allegations that the company had violated Section 5 of the FTC Act by sharing users’ personal information with a third party in a manner that was not disclosed in…

CalPrivacy Fines PlayOn Sports for Insufficient Opt-Out Process

By Lindsey Tonsager, Libbie Canter, Jayne Ponder, Ariel Dukes, Natalie Maas & Rosie Moss on March 12, 2026

Posted in State Privacy

On February 27, 2026, CalPrivacy and PlayOn settled a CCPA claim for $1.1 million. PlayOn is a digital ticketing platform used by schools and other organizations for ticketing, streaming, fundraising, concessions, merchandise sales, and website management. The settlement resolves allegations that PlayOn unlawfully “sold” and “shared” users’ personal information without providing sufficient opt-outs and notice, in violation of the CCPA. This marks the agency’s first enforcement action involving students’ data privacy.

Connecticut Attorney General Releases 2025 CTDPA Enforcement Report

By Libbie Canter, Lindsey Tonsager, Jayne Ponder & Rosie Moss on February 19, 2026

Posted in State Privacy

The Connecticut Office of the Attorney General (“OAG”) issued an updated Enforcement Report (“Enforcement Report”) under the Connecticut Data Privacy Act (“CTDPA”). The Enforcement Report discusses the OAG’s enforcement actions in 2025 and suggests some areas of focus from the regulator, summarized below.

Indiana Attorney General Releases Data Consumer Bill of Rights

By Lindsey Tonsager, Jayne Ponder & Rosie Moss on December 17, 2025

Posted in State Privacy

In advance of the Indiana Consumer Data Protection Act’s (“Act”) effective date on January 1, 2026, the Indiana Attorney General released a Data Consumer Bill of Rights (“Bill of Rights”) that summarizes the rights created in the Act.

Global Privacy Regulators Launch Enforcement Sweep Focused on Children’s Data Protection

By Lindsey Tonsager, Dan Cooper, Jenna Zhang & Rosie Moss on November 10, 2025

Posted in Children's Privacy

Last week, the Global Privacy Enforcement Network (“GPEN”)—a global network of over 30 national data protection authorities—announced the launch of its annual privacy sweep. The purpose of the sweep is to examine how websites and mobile applications commonly used by children handle minors’ personal information. Members of GPEN include regulators who have long prioritized protections for children and teens, such as the Federal Trade Commission (“FTC”), the California Attorney General, the California Privacy Protection Agency, the UK Information Commissioner’s Office, the French Commission Nationale de l’Informatique et des Libertés (“CNIL”), and the Irish Data Protection Commission.

Inside Privacy

Rosie Moss

FTC Alleges OkCupid Data Sharing Amounted to a Deceptive Practice

CalPrivacy Fines PlayOn Sports for Insufficient Opt-Out Process

Connecticut Attorney General Releases 2025 CTDPA Enforcement Report

Indiana Attorney General Releases Data Consumer Bill of Rights

Global Privacy Regulators Launch Enforcement Sweep Focused on Children’s Data Protection

About this Blog