Blogs
Our team addresses the pressing questions you’re facing, breaks down recent legal developments, and provides timely guidance on the issues impacting your business, industry, and personal protection. From emerging trends to case law analysis, our attorneys share their expertise to help you navigate complex legal landscapes with confidence. Check back often for new posts.
Sports Entertainment & Media
Your Website’s Live Chat Just Violated Florida Law and You’re Getting Sued for $10K Per Visitor
Your website uses session replay software to understand customer behavior. Your live chat records conversations to improve customer service. Your analytics track how visitors navigate your site.
Florida privacy lawyers have filed hundreds of lawsuits claiming these standard website tools violate Florida’s Security of Communications Act (FSCA), a wiretapping statute from 1969. Each lawsuit seeks $500 statutory damages per violation. With thousands of website visitors, you’re facing millions in potential liability for tools every business uses.
The lawsuits are nearly identical. Same lawyers. Same allegations. Different defendants. The goal isn’t protecting privacy—it’s forcing quick settlements before businesses can mount defenses. Small businesses across the country are forced to appear in person or work with experienced counsel to resolve the matter on their behalf.
Welcome to the latest privacy litigation gold rush, where plaintiff’s lawyers weaponize a 55-year-old wiretapping law against modern website technology, filing hundreds of lawsuits demanding settlements rather than proving actual harm to consumers.
I’m watching businesses across Florida get hit with these lawsuits for using basic website tools they didn’t know could trigger wiretapping liability. The companies getting sued aren’t recording phone calls or intercepting communications. They’re using standard analytics software, customer service chatbots, and session replay tools that virtually every commercial website deploys.
What Is the Florida Security of Communications Act
The FSCA, passed in 1969, is Florida’s wiretapping statute prohibiting the intentional interception or disclosure of “any wire, oral, or electronic communications” without the prior consent of all involved parties.
Florida is a “two-party consent” state, meaning all parties to a communication must consent to recording or interception. The statute was designed to prevent covert surveillance—hidden recording devices, wiretapped phone lines, unauthorized eavesdropping on private conversations.
The FSCA includes statutory damages of $500 per violation, plus attorney’s fees. This creates powerful financial incentives for plaintiffs’ lawyers to file mass litigation claiming multiple violations against businesses with high website traffic.
The statute predates the internet by decades. It was written for phone wiretaps and hidden recording devices, not website analytics and customer service chatbots. Courts are now being asked to apply 1969 wiretapping concepts to 2025 website technology.
How Website Tools Became “Wiretapping” Under FSCA
Plaintiff’s lawyers are claiming that common website tools violate the FSCA by “intercepting” communications between website visitors and the website itself.
Session Replay Software Lawsuits
Session replay tools record how visitors navigate websites, capturing mouse movements, keystrokes, scrolls, and clicks. Businesses use this technology to identify technical issues, understand user behavior, and improve website functionality.
The lawsuits claim session replay software “intercepts” communications between the visitor and the website without the visitor’s consent, violating the FSCA’s prohibition on unauthorized interception of electronic communications.
The legal theory: when a visitor types information into a website form or clicks through pages, they’re communicating with the website. Session replay software records this communication without explicit consent, which plaintiff’s lawyers argue constitutes unlawful interception under the FSCA.
Live Chat Recording Lawsuits
Websites offer customer service through live chats and automated chatbots. Many businesses record these conversations to improve AI training, enhance customer service, identify common issues, and maintain records for dispute resolution.
The lawsuits claim recording live chat conversations without explicit consent violates the FSCA because the statute requires all parties to a communication to consent to recording.
The legal theory: live chat conversations are “electronic communications” under the FSCA. Recording them without the visitor explicitly consenting to recording violates Florida’s two-party consent requirement, even when privacy policies generally disclose that the website collects user data.
Analytics and Tracking Technology Lawsuits
Standard website analytics tools track visitor behavior, page views, time on site, navigation patterns, and interaction with website elements. Businesses use this data to understand customer preferences and optimize website performance.
The lawsuits claim analytics tools “intercept” communications between visitors and websites by capturing data about how visitors interact with site content.
The legal theory: tracking visitor behavior constitutes interception of electronic communications under the FSCA, particularly when done without explicit real-time consent from each visitor.
The Predatory Litigation Pattern
These FSCA website lawsuits follow a familiar predatory litigation pattern I’ve seen with ADA website accessibility lawsuits, TCPA telephone cases, and BIPA biometric privacy claims.
Mass filing by small groups of lawyers: A handful of plaintiff’s law firms file hundreds of nearly identical lawsuits against different defendants. The complaints are templates with company names swapped out.
Statutory damages multiplication: The FSCA provides $500 per violation. Plaintiff’s lawyers claim each website visitor represents a separate violation. A website with 10,000 monthly visitors faces $5 million in potential statutory damages, regardless of actual harm to visitors.
Quick settlement pressure: Lawsuits are designed to pressure quick settlements rather than litigate legal questions. Settlement demands are typically $15,000-$50,000—less than the cost of mounting a defense, but high enough to be profitable when multiplied across hundreds of defendants.
No actual harm required: The lawsuits don’t allege that website visitors suffered any concrete injury from session replay software or chat recordings. The claim is statutory violation alone, regardless of whether visitors were harmed.
Exploitation of legal ambiguity: The FSCA was written for wiretapping, not websites. Courts haven’t definitively ruled on whether website analytics constitute “interception” under the statute. Plaintiff’s lawyers exploit this ambiguity by filing hundreds of lawsuits before courts can establish clear precedent.
I’ve reviewed dozens of these complaints. They’re virtually identical except for defendant names and specific website tools mentioned. This isn’t legitimate privacy protection—it’s manufactured litigation designed to generate settlement revenue.
Why General Privacy Policies Don’t Protect You
Most businesses assume their privacy policies protect them from these lawsuits. They don’t.
Your privacy policy probably says something like “we collect information about how you use our website” or “we may record customer service interactions for quality assurance.” Plaintiff’s lawyers argue these general disclosures don’t constitute the explicit consent required under Florida’s two-party consent law.
The FSCA requires “prior consent of all parties to the communication.” Plaintiff’s lawyers argue this means active, explicit consent—not passive acceptance of privacy policy terms buried in website footers.
Courts are split on whether general privacy policy disclosures satisfy FSCA consent requirements. Some courts have dismissed FSCA website claims, finding that privacy policies provide sufficient notice and implied consent. Other courts have allowed claims to proceed, holding that FSCA requires more explicit consent mechanisms.
This legal uncertainty is exactly what plaintiff’s lawyers exploit. They file hundreds of lawsuits knowing that businesses will settle rather than litigate uncertain legal questions through expensive discovery and motion practice.
Which Businesses Are Getting Targeted
These FSCA lawsuits target businesses across all industries operating commercial websites with significant traffic.
E-commerce sites: Online retailers using session replay software to optimize checkout processes and reduce cart abandonment.
Healthcare providers: Medical practices and hospitals using website chat features to handle patient inquiries and appointment scheduling.
Financial services: Banks, lenders, and financial advisors using analytics to understand customer behavior and improve online banking interfaces.
Professional services: Law firms, accounting firms, and consultancies using chat tools and analytics on their websites.
SaaS companies: Software businesses using session replay tools to understand how users interact with their platforms.
The common thread: commercial websites with meaningful traffic using standard website tools that plaintiff’s lawyers can characterize as “interception” of communications.
What Businesses Should Do Right Now
The FSCA website litigation wave is ongoing. Businesses using session replay software, chat recording tools, or analytics face lawsuit risk until courts establish clearer precedent or Florida’s legislature amends the statute.
Audit your website tools: Identify all session replay software, chat recording tools, analytics platforms, and tracking technologies on your website. Document what data each tool collects and how it’s used.
Implement explicit consent mechanisms: Add prominent consent banners requiring visitors to actively consent before session replay or chat recording begins. “Click to acknowledge” banners are stronger than general privacy policy disclosures buried in footers.
Update privacy policies: Revise privacy policies to specifically disclose session replay software, chat recording, and analytics tools. Use clear, non-technical language to explain what data is collected and why.
Review vendor relationships: If you’re using third-party tools for session replay or chat functionality, review vendor agreements to understand what data vendors collect and how they use it. Many FSCA lawsuits target businesses for vendor tool implementations.
Consider disabling high-risk tools: Evaluate whether session replay software and chat recording tools are necessary for your business. If the business value doesn’t justify litigation risk, consider disabling these tools until legal landscape clarifies.
Document compliance efforts: Maintain records showing compliance efforts including consent mechanisms implemented, privacy policy updates, and vendor audits. Documentation helps demonstrate good faith compliance if lawsuits are filed.
Don’t ignore demand letters: Some plaintiffs’ lawyers send pre-lawsuit demand letters offering to settle claims before filing. Ignoring these letters typically results in lawsuits being filed. Engage counsel to evaluate demand letters and negotiate reasonable resolutions.
The Legislative Fix Florida Needs
The FSCA needs legislative amendment clarifying that standard website tools don’t constitute “interception” under the statute when proper disclosures are provided.
Other states facing similar litigation over wiretapping statutes have passed legislation clarifying that website analytics and session replay tools don’t violate wiretapping laws when privacy policies disclose their use.
California amended its wiretapping statute to exclude from liability parties to communications who are notified that communications may be recorded. Florida needs similar clarification.
Until Florida’s legislature acts, businesses face ongoing litigation risk from plaintiff’s lawyers weaponizing a 55-year-old wiretapping statute against modern website technology.
The Reality
The FSCA was designed to prevent covert wiretapping and hidden surveillance. It’s being weaponized to generate settlement revenue from businesses using standard website tools with full disclosure in privacy policies.
These lawsuits don’t protect consumer privacy. Website visitors aren’t harmed by session replay software or chat recordings disclosed in privacy policies. The lawsuits serve one purpose: extracting settlements from businesses that settle rather than defend ambiguous legal claims through expensive litigation.
Florida businesses using standard website tools face lawsuit risk until courts establish clear precedent or the legislature amends the FSCA. In the meantime, implementing explicit consent mechanisms and updating privacy policies reduces exposure, though no approach eliminates risk entirely when predatory plaintiff lawyers file mass litigation exploiting legal ambiguities.
My team helps businesses facing FSCA website litigation defend against predatory claims, implement compliance measures that reduce lawsuit exposure, and engage with legislative efforts to reform Florida’s wiretapping statute for the internet age.
Contact me directly at tshields@kelleykronenberg.com to discuss your FSCA compliance strategy or defense against pending claims.
About the Author:
Timothy Shields
Partner/Business Unit Leader, Data Privacy & Technology
Kelley Kronenberg-Fort Lauderdale, FL.
(954) 370-9970
Email
Bio
Timothy Shields holds a Doctorate in Education and Juris Doctor, serves as Partner and Business Unit Leader for Data Privacy & Technology at Kelley Kronenberg, and is a certified NFL agent. He specializes in representing college athletes in Loss of Value insurance negotiations, NIL matters, and coverage disputes involving career-altering injuries.
Your website uses session replay software to understand customer behavior. Your live chat records conversations to improve customer service. Your analytics track how visitors navigate your site.
Florida privacy lawyers have filed hundreds of lawsuits claiming these standard website tools violate Florida’s Security of Communications Act (FSCA), a wiretapping statute from 1969. Each lawsuit seeks $500 statutory damages per violation. With thousands of website visitors, you’re facing millions in potential liability for tools every business uses.
The lawsuits are nearly identical. Same lawyers. Same allegations. Different defendants. The goal isn’t protecting privacy—it’s forcing quick settlements before businesses can mount defenses. Small businesses across the country are forced to appear in person or work with experienced counsel to resolve the matter on their behalf.
Welcome to the latest privacy litigation gold rush, where plaintiff’s lawyers weaponize a 55-year-old wiretapping law against modern website technology, filing hundreds of lawsuits demanding settlements rather than proving actual harm to consumers.
I’m watching businesses across Florida get hit with these lawsuits for using basic website tools they didn’t know could trigger wiretapping liability. The companies getting sued aren’t recording phone calls or intercepting communications. They’re using standard analytics software, customer service chatbots, and session replay tools that virtually every commercial website deploys.
What Is the Florida Security of Communications Act
The FSCA, passed in 1969, is Florida’s wiretapping statute prohibiting the intentional interception or disclosure of “any wire, oral, or electronic communications” without the prior consent of all involved parties.
Florida is a “two-party consent” state, meaning all parties to a communication must consent to recording or interception. The statute was designed to prevent covert surveillance—hidden recording devices, wiretapped phone lines, unauthorized eavesdropping on private conversations.
The FSCA includes statutory damages of $500 per violation, plus attorney’s fees. This creates powerful financial incentives for plaintiffs’ lawyers to file mass litigation claiming multiple violations against businesses with high website traffic.
The statute predates the internet by decades. It was written for phone wiretaps and hidden recording devices, not website analytics and customer service chatbots. Courts are now being asked to apply 1969 wiretapping concepts to 2025 website technology.
How Website Tools Became “Wiretapping” Under FSCA
Plaintiff’s lawyers are claiming that common website tools violate the FSCA by “intercepting” communications between website visitors and the website itself.
Session Replay Software Lawsuits
Session replay tools record how visitors navigate websites, capturing mouse movements, keystrokes, scrolls, and clicks. Businesses use this technology to identify technical issues, understand user behavior, and improve website functionality.
The lawsuits claim session replay software “intercepts” communications between the visitor and the website without the visitor’s consent, violating the FSCA’s prohibition on unauthorized interception of electronic communications.
The legal theory: when a visitor types information into a website form or clicks through pages, they’re communicating with the website. Session replay software records this communication without explicit consent, which plaintiff’s lawyers argue constitutes unlawful interception under the FSCA.
Live Chat Recording Lawsuits
Websites offer customer service through live chats and automated chatbots. Many businesses record these conversations to improve AI training, enhance customer service, identify common issues, and maintain records for dispute resolution.
The lawsuits claim recording live chat conversations without explicit consent violates the FSCA because the statute requires all parties to a communication to consent to recording.
The legal theory: live chat conversations are “electronic communications” under the FSCA. Recording them without the visitor explicitly consenting to recording violates Florida’s two-party consent requirement, even when privacy policies generally disclose that the website collects user data.
Analytics and Tracking Technology Lawsuits
Standard website analytics tools track visitor behavior, page views, time on site, navigation patterns, and interaction with website elements. Businesses use this data to understand customer preferences and optimize website performance.
The lawsuits claim analytics tools “intercept” communications between visitors and websites by capturing data about how visitors interact with site content.
The legal theory: tracking visitor behavior constitutes interception of electronic communications under the FSCA, particularly when done without explicit real-time consent from each visitor.
The Predatory Litigation Pattern
These FSCA website lawsuits follow a familiar predatory litigation pattern I’ve seen with ADA website accessibility lawsuits, TCPA telephone cases, and BIPA biometric privacy claims.
Mass filing by small groups of lawyers: A handful of plaintiff’s law firms file hundreds of nearly identical lawsuits against different defendants. The complaints are templates with company names swapped out.
Statutory damages multiplication: The FSCA provides $500 per violation. Plaintiff’s lawyers claim each website visitor represents a separate violation. A website with 10,000 monthly visitors faces $5 million in potential statutory damages, regardless of actual harm to visitors.
Quick settlement pressure: Lawsuits are designed to pressure quick settlements rather than litigate legal questions. Settlement demands are typically $15,000-$50,000—less than the cost of mounting a defense, but high enough to be profitable when multiplied across hundreds of defendants.
No actual harm required: The lawsuits don’t allege that website visitors suffered any concrete injury from session replay software or chat recordings. The claim is statutory violation alone, regardless of whether visitors were harmed.
Exploitation of legal ambiguity: The FSCA was written for wiretapping, not websites. Courts haven’t definitively ruled on whether website analytics constitute “interception” under the statute. Plaintiff’s lawyers exploit this ambiguity by filing hundreds of lawsuits before courts can establish clear precedent.
I’ve reviewed dozens of these complaints. They’re virtually identical except for defendant names and specific website tools mentioned. This isn’t legitimate privacy protection—it’s manufactured litigation designed to generate settlement revenue.
Why General Privacy Policies Don’t Protect You
Most businesses assume their privacy policies protect them from these lawsuits. They don’t.
Your privacy policy probably says something like “we collect information about how you use our website” or “we may record customer service interactions for quality assurance.” Plaintiff’s lawyers argue these general disclosures don’t constitute the explicit consent required under Florida’s two-party consent law.
The FSCA requires “prior consent of all parties to the communication.” Plaintiff’s lawyers argue this means active, explicit consent—not passive acceptance of privacy policy terms buried in website footers.
Courts are split on whether general privacy policy disclosures satisfy FSCA consent requirements. Some courts have dismissed FSCA website claims, finding that privacy policies provide sufficient notice and implied consent. Other courts have allowed claims to proceed, holding that FSCA requires more explicit consent mechanisms.
This legal uncertainty is exactly what plaintiff’s lawyers exploit. They file hundreds of lawsuits knowing that businesses will settle rather than litigate uncertain legal questions through expensive discovery and motion practice.
Which Businesses Are Getting Targeted
These FSCA lawsuits target businesses across all industries operating commercial websites with significant traffic.
E-commerce sites: Online retailers using session replay software to optimize checkout processes and reduce cart abandonment.
Healthcare providers: Medical practices and hospitals using website chat features to handle patient inquiries and appointment scheduling.
Financial services: Banks, lenders, and financial advisors using analytics to understand customer behavior and improve online banking interfaces.
Professional services: Law firms, accounting firms, and consultancies using chat tools and analytics on their websites.
SaaS companies: Software businesses using session replay tools to understand how users interact with their platforms.
The common thread: commercial websites with meaningful traffic using standard website tools that plaintiff’s lawyers can characterize as “interception” of communications.
What Businesses Should Do Right Now
The FSCA website litigation wave is ongoing. Businesses using session replay software, chat recording tools, or analytics face lawsuit risk until courts establish clearer precedent or Florida’s legislature amends the statute.
Audit your website tools: Identify all session replay software, chat recording tools, analytics platforms, and tracking technologies on your website. Document what data each tool collects and how it’s used.
Implement explicit consent mechanisms: Add prominent consent banners requiring visitors to actively consent before session replay or chat recording begins. “Click to acknowledge” banners are stronger than general privacy policy disclosures buried in footers.
Update privacy policies: Revise privacy policies to specifically disclose session replay software, chat recording, and analytics tools. Use clear, non-technical language to explain what data is collected and why.
Review vendor relationships: If you’re using third-party tools for session replay or chat functionality, review vendor agreements to understand what data vendors collect and how they use it. Many FSCA lawsuits target businesses for vendor tool implementations.
Consider disabling high-risk tools: Evaluate whether session replay software and chat recording tools are necessary for your business. If the business value doesn’t justify litigation risk, consider disabling these tools until legal landscape clarifies.
Document compliance efforts: Maintain records showing compliance efforts including consent mechanisms implemented, privacy policy updates, and vendor audits. Documentation helps demonstrate good faith compliance if lawsuits are filed.
Don’t ignore demand letters: Some plaintiffs’ lawyers send pre-lawsuit demand letters offering to settle claims before filing. Ignoring these letters typically results in lawsuits being filed. Engage counsel to evaluate demand letters and negotiate reasonable resolutions.
The Legislative Fix Florida Needs
The FSCA needs legislative amendment clarifying that standard website tools don’t constitute “interception” under the statute when proper disclosures are provided.
Other states facing similar litigation over wiretapping statutes have passed legislation clarifying that website analytics and session replay tools don’t violate wiretapping laws when privacy policies disclose their use.
California amended its wiretapping statute to exclude from liability parties to communications who are notified that communications may be recorded. Florida needs similar clarification.
Until Florida’s legislature acts, businesses face ongoing litigation risk from plaintiff’s lawyers weaponizing a 55-year-old wiretapping statute against modern website technology.
The Reality
The FSCA was designed to prevent covert wiretapping and hidden surveillance. It’s being weaponized to generate settlement revenue from businesses using standard website tools with full disclosure in privacy policies.
These lawsuits don’t protect consumer privacy. Website visitors aren’t harmed by session replay software or chat recordings disclosed in privacy policies. The lawsuits serve one purpose: extracting settlements from businesses that settle rather than defend ambiguous legal claims through expensive litigation.
Florida businesses using standard website tools face lawsuit risk until courts establish clear precedent or the legislature amends the FSCA. In the meantime, implementing explicit consent mechanisms and updating privacy policies reduces exposure, though no approach eliminates risk entirely when predatory plaintiff lawyers file mass litigation exploiting legal ambiguities.
My team helps businesses facing FSCA website litigation defend against predatory claims, implement compliance measures that reduce lawsuit exposure, and engage with legislative efforts to reform Florida’s wiretapping statute for the internet age.
Contact me directly at tshields@kelleykronenberg.com to discuss your FSCA compliance strategy or defense against pending claims.
About the Author:
Timothy Shields
Partner/Business Unit Leader, Data Privacy & Technology
Kelley Kronenberg-Fort Lauderdale, FL.
(954) 370-9970
Email
Bio
Timothy Shields holds a Doctorate in Education and Juris Doctor, serves as Partner and Business Unit Leader for Data Privacy & Technology at Kelley Kronenberg, and is a certified NFL agent. He specializes in representing college athletes in Loss of Value insurance negotiations, NIL matters, and coverage disputes involving career-altering injuries.