Surveillance Capitalism
Conduct Screen Surveillance Capitalism
Companies whose business model involves deploying behavioral surveillance against their own users, customers, or subjects — extracting behavioral data, building prediction products, and monetizing them without meaningful consent. Covers surveillance capitalism (Zuboff) platforms (search, social, adtech, data brokers) and any actor that turns its own user relationship into a surveillance apparatus for commercial gain. Includes: ad-tech behavioral profiling, data brokerage, identity resolution, and financial behavioral analytics. Distinct from surveillance_tech, which covers manufacturers and vendors of surveillance tools.
30 companies currently excluded under this screen
Excluded Companies (30 total)
Showing 30 of 30 companies excluded under this screen.
| Ticker | Company | Reason |
|---|---|---|
| ADBE | Adobe Inc | While Adobe markets its Firefly AI as being trained exclusively on "licensed and public domain" data to avoid copyright infringement, investigative reports (Bloomberg/Symbio6) revealed that Adobe util... |
| ALL | ALLSTATE CORP | Allstate, through its subsidiary Arity, covertly collected driving behavior data from over 45 million Americans by paying app developers to embed Arity tracking software into consumer apps including L... |
| AMZN | Amazon.com, Inc. | FTC/DOJ $25M civil penalty (May 2023): Amazon programmed Alexa to retain children's voice recordings indefinitely to train speech recognition models, violating COPPA. Court also ordered deletion of al... |
| BRZE | Braze, Inc | Braze operates a customer engagement platform that enables brands to collect, integrate, and leverage customer data for personalized marketing campaigns. The company’s core product is a software platf... |
| CARG | CARGURUS INC | CarGurus operates an online automotive marketplace that suffered a major data breach in February 2026 when the ShinyHunters hacking group compromised 12.5 million user accounts. Attackers impersonated... |
| CART | INSTACART (MAPLEBEAR INC) | Instacart's core business model is built on extracting and monetizing detailed behavioral data from both customers and shoppers. The company collects granular data on shopping habits, location, spendi... |
| COR | CENCORA INC | In August 2025, Cencora and its subsidiary The Lash Group agreed to a $40 million class-action settlement following a February 2024 cyberattack. The breach exfiltrated the data of over 1.43 million in... |
| CSCO | Cisco Systems, Inc. | US Supreme Court granted cert in Cisco Systems v. Doe I (Jan 2026, case 24-856): Falun Gong plaintiffs allege Cisco designed and built the Golden Shield surveillance system with custom databases and r... |
| EFX | EQUIFAX INC | Surveillance capitalism (Zuboff): Equifax — Financial Marketing Services segment uses consumer financial behavior (credit, income, spending activity, net worth) for client targeting and segmentation; ... |
| GOOGL | Alphabet Inc. | Alphabet derives over 77% of its $350 billion annual revenue from advertising fueled by behavioral data extraction across Search, YouTube, Maps, Gmail, Android, and Chrome. Shoshana Zuboff's "The Age ... |
| HD | Home Depot, Inc. (The) | Home Depot's data privacy record begins with one of the largest retail breaches in history. From April to September 2014 attackers used credentials stolen from a third-party vendor to deploy custom ma... |
| HSIC | HENRY SCHEIN INC | Between late 2023 and early 2025, Henry Schein suffered catastrophic series of ransomware attacks by BlackCat (ALPHV) group. Breach compromised personal and protected health information of 166,432 ind... |
| LIF | LIFE360 INC | Life360 has a documented history of selling precise geolocation data of users — including minors — to approximately a dozen data brokers (Safegraph, X-Mode, Arity). While the company announced it woul... |
| MAR | Marriott International | Marriott International has been subject to enforcement actions across three separate data breaches spanning 2014 to 2022, collectively affecting approximately 344 million customers worldwide. The most... |
| META | Meta Platforms, Inc. | The company has broken records around the world for data privacy fines. Ireland's Data Privacy Commission assessed a $1.2 billion fine for transferring European users' data to the United States, which... |
| MS | Morgan Stanley | Morgan Stanley paid $35M (SEC, September 2022) for failing to properly dispose of devices containing PII of approximately 15 million customers. The firm hired an unqualified moving company to decommis... |
| ODFL | OLD DOMINION FREIGHT LINE INC | Old Dominion Freight Line faces a class-action lawsuit in Illinois for violating the Biometric Information Privacy Act (BIPA). The company mandated workers use fingerprint scans to clock in/out, unlaw... |
| PGR | PROGRESSIVE CORP | Progressive paid $3.25 million to settle a data breach lawsuit in 2024-2025. The breach involved unauthorized access to customers' Social Security numbers and driver's licenses over a period described... |
| PINS | Pinterest operates a social media platform whose business model is built on behavioral surveillance and targeted advertising. The company extracts detailed data on user interests, browsing habits, and... | |
| RAMP | LiveRamp Holdings Inc | LiveRamp Holdings (formerly Acxiom) is a pure-play data broker whose core business is compiling detailed identity profiles on hundreds of millions of individuals and selling them to advertisers, pharm... |
| SNAP | Snapchat | Surveillance capitalism (Zuboff): Snap Inc — persistent location tracking, demographic profiling of young users, AR/Lens behavioral data collection; Snap Audience Network enables behavioral ad targeti... |
| T | AT&T INC | AT&T operates a telecommunications network that inherently collects detailed behavioral data on its customers’ location, browsing habits, and communication patterns. This data is monetized through its... |
| TGT | Target Corporation | Target's 2013 data breach exposed 40M+ credit cards and 110M customer records. Settlements: $39.3M federal class action (banks), $18.5M multi-state AG settlement (47 states), $67M Visa settlement, $10... |
| TMUS | T-MOBILE US INC | T-Mobile has a documented pattern of massive data breaches spanning 2021-2023, demonstrating systemic failures in data security governance. In August 2021, attackers stole records of 47.8 million cust... |
| TRU | TransUnion | Surveillance capitalism (Zuboff): TransUnion — credit bureau with TruAudience marketing data division; acquired Neustar for $3.1B (Dec 2021) adding identity resolution and behavioral targeting to cred... |
| TTD | The Trade Desk Inc | The Trade Desk operates a global digital advertising platform whose business model is built on behavioral surveillance. The company collects, analyzes, and monetizes detailed data on internet users' b... |
| TTGT | TECHTARGET INC | TechTarget operates a global network of information technology websites and publishes editorial content covering enterprise technology, including security and surveillance products. Its coverage inclu... |
| VRSK | VERISK ANALYTICS INC | Surveillance capitalism (Zuboff): Verisk Analytics — insurance data consortium collecting behavioral data from insurer customers, aggregating billions of records, selling behavioral risk analytics bac... |
| VZ | Verizon Communications Inc. | Verizon Communications Inc. operates a telecommunications network that collects and monetizes customer location data as a core business activity. The company’s privacy notice discloses the collection ... |
| WW | WW INTERNATIONAL INC | WW International (formerly Weight Watchers) and its subsidiary Kurbo Inc. agreed to a $1.5 million civil penalty to settle FTC charges of violating the Children's Online Privacy Protection Act (COPPA)... |
The Naughty List
A digest of changes to our exclusion list — new additions, removals, and the evidence behind them. We review the list continuously as new evidence surfaces.
RSS feed
No spam · Unsubscribe anytime