California’s $12.75‑million settlement (Settlement) with General Motors (GM) highlights growing regulatory scrutiny of how companies collect, use, and share sensitive location and behavioral data. Stemming from alleged privacy violations tied to GM’s OnStar service, the case emphasizes consent, purpose limitation, data minimization and de‑identification as enforcement priorities. This article outlines the Settlement’s key terms, enforcement trends and practical compliance takeaways, with insights from specialists at Baker Botts, Franfurt Kurnit and Greenberg Traurig. See our four-part series on connected cars: “Connected Cars: FTC GM Settlement Anchors Regulatory Focus” (Mar. 11, 2026), “The Legal Landscape” (Mar. 25, 2026), “Privacy Compliance Guidance” (Apr. 8, 2026), and “Addressing Cybersecurity Issues” (Apr. 22, 2026).