What they're not telling you: # GM Just Paid a Record Penalty for Breaking California privacy-law.html" title="GM just paid a record penalty for breaking California privacy law" style="color:#1a1a1a;text-decoration:underline;text-decoration-style:dotted;font-weight:500;">Privacy Law General Motors monetized the driving habits of hundreds of thousands of California motorists without their knowledge or consent, generating approximately $20 million from the sale before being caught and fined $12.75 million. The settlement reveals a sophisticated data extraction scheme disguised within a trusted service. Drivers who subscribed to OnStar—GM's emergency roadside and navigation service—believed they were purchasing roadside assistance.

Diana Reeves
The Take
Diana Reeves · Corporate Watchdog & Markets

# THE TAKE: GM's Penalty Is Regulatory Theater General Motors just got cheap. Twelve-point-seven-five million dollars sounds massive until you remember GM's annual revenue eclipses $120 billion. That's a rounding error masquerading as accountability. Here's what actually happened: California's attorney general extracted a fine small enough that GM's cost-benefit analysis still favors data extraction. They monetized hundreds of thousands of drivers' intimate behavioral data—where you went, when, how fast—then paid less than 0.01% of annual revenue when caught. The real villain isn't GM's greed; it's the penalty structure itself. California designed a system where corporations can treat privacy violations as a business expense, not an existential risk. Until fines threaten *actual* profitability or executives face criminal liability, these settlements function as licensing fees. GM will keep selling your data. They'll just lawyer up better next time.

What the Documents Show

Instead, GM systematically harvested their precise location data, speed records, and driving patterns, then sold this intimate information to data brokers. The company misled subscribers about what would happen to their information, a critical distinction that transforms this from a privacy breach into deliberate deception. What makes this case particularly significant is the gap between the penalty and the profit. GM extracted roughly $20 million in value from illegally harvested data but paid only $12.75 million in civil penalties. Financially, the company came out ahead—a math that creates perverse incentives for other corporations considering similar schemes.

🔎 Mainstream angle: The corporate press either ignored this story entirely or buried it in a 3-sentence brief. The framing, when it appeared at all, focused on process rather than impact.

Follow the Money

The mainstream coverage of this story has largely treated it as a routine settlement, the cost of doing business, rather than highlighting the asymmetry at its core: breaking privacy law proved more profitable than respecting it. California's aggressive enforcement through its Attorney General stands in sharp contrast to the federal regulatory vacuum. The FTC has nominal authority over corporate data practices, but lacks the resources and political will to pursue cases at scale. GM faced consequences only because California maintains its own privacy enforcement apparatus—a protection unavailable to residents of the other 49 states. This jurisdictional reality means motorists in Texas, Ohio, or Florida driving identical GM vehicles with OnStar services received no legal protection whatsoever, despite engaging in identical transactions with the same company. The settlement also obscures an uncomfortable truth about connected car technology that the industry prefers unstated: vehicle data has become more valuable than the vehicles themselves.

What Else We Know

Modern cars are essentially moving data collection platforms. OnStar's primary value proposition to GM was never roadside assistance; it was the surveillance infrastructure embedded in millions of vehicles. Drivers who believed they were purchasing a service were actually selling their mobility patterns to the highest bidder, a transaction they neither consciously made nor understood. For ordinary people, the implications are chilling. If you own a connected vehicle—whether through OnStar, Tesla's telematics, or similar services in nearly every modern car—your driving behavior is likely already commodified. You have limited transparency into which data brokers possess your information, limited ability to delete it, and limited recourse if it's misused for insurance discrimination, targeted advertising, or sold to third parties you'd never willingly consent to.

Primary Sources

What are they not saying? Who benefits from this story staying buried? Follow the regulatory filings, the court dockets, and the FOIA releases. The truth is in the paperwork — it always is.

Disclosure: NewsAnarchist aggregates from public records, API feeds (Federal Register, CourtListener, MuckRock, Hacker News), and independent media. AI-assisted synthesis. Always verify primary sources linked above.