By Steve Levine
Published: May 25, 2026
Status
Complaint Filed
filed May 15, 2026 in S.D.N.Y. · allegations only · no settlement
Court
S.D.N.Y. 1:26-cv-04072
U.S. District Court for the Southern District of New York
What's Alleged
Facial Recognition Without Consent
Disneyland and California Adventure entrance scans starting April 28, 2026
Claim Form?
No — Nothing to File Yet
complaint stage only; preserve any Disney ticket or annual pass records
What Is the Disney Facial Recognition Class Action About?
On May 15, 2026, plaintiff Summer Christine Duffield filed a proposed class action complaint against The Walt Disney Company and Disney DTC LLC, alleging that Disney unlawfully collected facial recognition biometric data from guests entering Disneyland Park and Disney California Adventure Park without adequate consent. The case, captioned Duffield v. The Walt Disney Company, Case No. 1:26-cv-04072, is pending in the United States District Court for the Southern District of New York.The complaint alleges that beginning around April 28, 2026, Disney began implementing facial recognition technology at the entrances of its two California theme parks. According to the complaint, Disney photographs guests as they pass through entrance lanes, converts those photos into unique numerical biometric templates similar to a faceprint, and compares them against photos taken when the same guests first used their tickets or annual passes. The plaintiff alleges this entire process happens without adequate disclosure to guests and without the kind of express written consent that the complaint argues should be required for sensitive biometric data collection.
The lawsuit seeks damages in excess of $5 million on behalf of a proposed Nationwide Class and California Sub-Class. The named plaintiff, Summer Christine Duffield, is a Riverside County, California resident who allegedly visited a Disney California theme park on May 10, 2026. She is represented by Blake Hunter Yagman of Yagman PLLC in Forest Hills, New York.
Disney has not yet filed an answer or motion to dismiss. The Court has not ruled on class certification or any of the merits. The allegations in this article are drawn from the complaint and from publicly reported statements; Disney has publicly stated that participation in the facial recognition lanes is optional and that biometric data is deleted within 30 days, with exceptions for legal and fraud-prevention purposes. The complaint disputes both of those representations.
What Disney Is Allegedly Doing at Disneyland Entrances
According to the complaint, the alleged facial recognition system at Disneyland and California Adventure works as follows: a guest approaches an entrance lane, the system photographs the guest, converts the photograph into a numerical biometric template (a unique mathematical representation of the guest's face), and compares the template against a stored photograph taken when that guest first used the ticket or annual pass associated with their entry. If the templates match, the system verifies the guest's identity and permits entry. Disney has publicly described the purpose of the system as preventing ticket fraud and facilitating re-entry into the parks.The complaint's criticism focuses on three points. First, the lawsuit alleges that Disney does not adequately disclose to guests that this biometric collection is taking place. The complaint references reporting that signage near security checkpoints is small, decorated with colorful Mickey Mouse silhouettes, and easy to miss. Second, the complaint alleges that the entrance lanes Disney designates as non-facial-recognition lanes (marked with a slash through a silhouette of a head and shoulders) are not clearly distinguished from facial-recognition lanes, and that of the dozens of entry lanes available, only four are allegedly designated as non-facial-recognition. Third, the complaint alleges that children, who are the primary visitors at Disney theme parks, cannot meaningfully consent to having their biometric data collected, and that the complaint argues Disney's reliance on parental consent for children does not satisfy what the lawsuit characterizes as the appropriate standard for biometric data collection from minors.
On the 30-day retention claim, the complaint is skeptical. Disney publicly states that facial recognition data is deleted within 30 days, except where required for legal or fraud-prevention purposes. The complaint alleges this representation cannot be accurate because the biometric template comparison process necessarily requires Disney to retain a reference template from the guest's first use of a ticket or annual pass, which can date back a year or longer. The lawsuit alleges this inconsistency may itself constitute a misrepresentation actionable under California's Unfair Competition Law and Consumer Legal Remedies Act.
Why the Lawsuit Was Filed in New York Instead of California
A reader looking at this case for the first time may wonder why a lawsuit about a California theme park, filed by a California resident, lives in a New York federal court. The complaint explains the jurisdictional choice in two ways.First, The Walt Disney Company maintains a co-headquarters in New York City that houses Disney's technology, streaming, and video operations. The complaint argues this New York presence is sufficient to confer personal jurisdiction in the Southern District of New York for claims against Disney. Second, the complaint asserts that Disney DTC LLC, named as a co-defendant and described as Disney's data controller, designates New York as its choice-of-law jurisdiction and selects this District as the forum for disputes. Filing in S.D.N.Y. takes advantage of those self-selected provisions.
Filing class actions in plaintiff-friendly federal districts is a common tactical choice in privacy litigation. The Southern District of New York has well-developed case law on biometric privacy claims and CAFA-based federal jurisdiction. Disney has not yet challenged the choice of venue, but it is procedurally common for defendants to file motions to transfer venue early in cases like this.
What Laws Does the Complaint Allege Disney Violated?
The complaint brings five counts. Because California does not have a dedicated biometric privacy statute on par with Illinois's Biometric Information Privacy Act (BIPA), the complaint relies on a combination of constitutional, common-law, and statutory consumer protection theories.• Count One: California Constitution Right to Privacy. Article I, Section 1 of the California Constitution lists privacy as an inalienable right of all Californians. The complaint alleges Disney's biometric collection constitutes a serious invasion of that constitutional privacy right.
• Count Two: Intrusion Upon Seclusion (common law). A California common-law tort that protects against intrusion into matters in which the plaintiff has a reasonable expectation of privacy. The complaint alleges the biometric collection meets the elements of the tort.
• Count Three: California Unfair Competition Law (UCL), Cal. Bus. & Prof. Code § 17200. The complaint alleges Disney's conduct was unfair, unlawful, and fraudulent under California's consumer protection statute.
• Count Four: California Consumer Legal Remedies Act (CLRA), Cal. Civ. Code § 1770 et seq. The complaint alleges Disney made untrue or misleading statements about biometric retention and the voluntariness of the facial recognition lanes.
• Count Five: Unjust Enrichment. A common-law equitable remedy. The complaint alleges Disney unjustly profited from biometric data Disney collected without paying class members for that data.
The complaint also references the FTC's 2023 Policy Statement on Biometric Information and Section 5 of the FTC Act as guidance underlying the unfair-trade-practices claims, though no FTC enforcement action has been initiated. The complaint argues that biometric collection without clear and conspicuous disclosure constitutes a deceptive practice within the meaning of Section 5.
Who Is in the Proposed Class?
The complaint proposes two classes:• Nationwide Class: All individuals who had their facial recognition collected, stored, retained, or otherwise used by Disney without consent during the applicable statutory period.
• California Sub-Class: All individuals who had their facial recognition collected, stored, retained, or otherwise used by Disney without consent during the applicable statutory period.
The two class definitions are identical in the complaint, with the California Sub-Class operating as a backup vehicle for state-law-specific claims under the California Constitution, UCL, and CLRA if the Nationwide Class is not certified. Excluded from both classes are: the presiding judges and their immediate families; Disney and its affiliates, subsidiaries, parents, successors, and certain employees; and plaintiff's counsel and Disney's counsel.
The complaint estimates the class likely consists of thousands of individuals. Class certification has not been ruled on; Disney will likely contest class certification, particularly on whether common questions predominate (the test for Rule 23(b)(3) certification).
Why Biometric Data Is Different From Other Personal Data
The complaint spends substantial space explaining why biometric data deserves special legal protection, and the argument is worth understanding because it underpins the entire legal theory of the case.Biometric identifiers are immutable. Unlike a credit card number, a Social Security Number, or even an address, a biometric template derived from a person's face cannot be changed if it is compromised. A data breach exposing a faceprint creates a permanent vulnerability for the affected individual. The complaint references the FTC's 2023 Policy Statement on Biometric Information, which expressly notes that the collection of biometric information can create a serious risk of harm that consumers cannot reasonably avoid if the collection is not clearly and conspicuously disclosed.
Several states and cities have enacted biometric privacy laws in response to these concerns, and the complaint pointedly notes that Disney does not deploy biometric collection in those jurisdictions. The complaint references Illinois (the Biometric Information Privacy Act, or BIPA), Portland Oregon (Chapter 34.10), Washington (Chapter 19.375 RCW), Nevada (NRS Chapter 603A), and Texas (the Capture or Use of Biometric Identifier Act, or CUBI). The complaint argues that Disney's choice not to deploy facial recognition in those jurisdictions, while doing so in California (which lacks a dedicated biometric statute), demonstrates Disney's awareness of biometric privacy law and the deliberate nature of its California rollout.
What This Means for Disneyland and California Adventure Visitors
If you visited Disneyland Park or Disney California Adventure Park on or after April 28, 2026 and entered through a facial recognition lane, your facial biometric data was likely captured by Disney's system per the descriptions in the complaint and in public reporting from the Los Angeles Times and other outlets.Practical guidance for visitors at this stage:
• There is no claim form to submit. No settlement has been reached, and any potential recovery is years away if the case progresses.
• Preserve any Disney park records you may have, including ticket confirmations, annual pass receipts, and dated entry photos. If a class is certified and a settlement is reached, eligibility may require proof of park entry during the class period.
• To avoid ongoing biometric collection, use entrance lanes Disney designates as non-facial-recognition lanes, though the complaint disputes whether those lanes are clearly marked.
• Be skeptical of scam communications. Newly-filed class action complaints attract scammers who set up fake settlement websites or send phishing emails. There is no Disney facial recognition settlement to claim at this stage; anyone promising you a Disney settlement payment is running a scam.
• Monitor this page for updates. OCA will track the case as it moves through Disney's expected motion to dismiss, class certification briefing, discovery, and any potential settlement or trial.
Disney's Public Response and Position
Disney has publicly defended the facial recognition program through statements to news outlets. According to public reporting, Disney describes the technology as optional, with guests free to use non-facial-recognition entrance lanes. Disney has stated that the technology helps prevent ticket fraud and facilitates re-entry. Disney has also stated that biometric data is deleted within 30 days, with an exception for legal or fraud-prevention purposes.Disney has not, as of the publication of this article, filed any substantive response to the complaint in court. Defendants typically have 21 days from service to file an answer or motion under Federal Rule of Civil Procedure 12. Common early defense motions in cases like this include motions to dismiss for failure to state a claim (Rule 12(b)(6)) and motions to transfer venue (28 U.S.C. § 1404(a)) from S.D.N.Y. to a California federal district court closer to the alleged conduct.
Disney has not admitted any wrongdoing. The Court has not ruled on the merits of any claim. This article reports what the complaint alleges and what Disney has publicly stated; it is not a finding of fact.
How Does This Compare to Other Theme Park or Biometric Lawsuits?
Biometric privacy litigation has expanded substantially over the past decade, particularly under Illinois's BIPA, which provides statutory damages of $1,000 per negligent violation and $5,000 per willful or reckless violation. Major BIPA settlements have reached hundreds of millions of dollars, including the Facebook/Meta tag-suggestion settlement and the Google Photos settlement. California, by contrast, does not have a dedicated biometric statute, which is why this complaint relies on a patchwork of constitutional, common-law, and consumer protection theories.Theme park privacy litigation is less developed. Most theme park privacy cases historically have focused on Disney's separate Magic Band fingerprinting program at Walt Disney World in Florida or the Disney PhotoPass image-capture program. The complaint references both as context for arguing that Disney is sophisticated and aware of biometric collection issues, but neither is the basis for the claims in Duffield v. Disney.
Disney's broader privacy track record matters here. In February 2026, California Attorney General Rob Bonta hit Disney with a $2.75 million CCPA fine — the largest in California history — over the way Disney handled streaming opt-outs on Disney+, Hulu, and ESPN+. The Federal Trade Commission has previously taken enforcement action against Disney under COPPA for how it handled children's data. Plaintiffs in this case will likely point to that pattern when arguing that Disney was on notice about consumer-privacy and children's-privacy requirements at the time facial recognition was rolled out at the parks.
How this case develops will depend heavily on whether California courts (or a transferred court) accept the theory that facial recognition collection at a private commercial venue, without express written consent, violates the California Constitution and California consumer protection statutes. Disney's likely defense will argue that the facial recognition lanes are clearly optional, that disclosure is adequate under prevailing California standards, and that the 30-day retention policy comports with industry practice.
Other Disney Class Actions & Enforcement Matters
This isn’t Disney’s only privacy- or consumer-protection case in recent years, and the facial recognition complaint sits inside a broader pattern. The most relevant adjacent matters:• Disney $2.75M CCPA Streaming Privacy Settlement (California AG, February 2026). California Attorney General Rob Bonta fined Disney $2.75 million — the largest CCPA fine in California history — over allegations that Disney continued selling and sharing user data from Disney+, Hulu, and ESPN+ even after consumers opted out. Government enforcement, not a class action. Read the Disney CCPA settlement breakdown for what changed and how Disney’s streaming opt-outs now work.
• Disney FTC COPPA Children’s Privacy Settlement. A separate Federal Trade Commission enforcement action over Disney’s handling of children’s privacy under the Children’s Online Privacy Protection Act (COPPA). Directly relevant here because the facial recognition complaint argues that minors at Disneyland cannot meaningfully consent to biometric collection. See the Disney FTC COPPA settlement page for what the FTC required of Disney.
• Disney ESPN $50M YouTube TV & DirecTV Stream Antitrust Settlement. A separate consumer class action alleging Disney used ESPN and Hulu to force anticompetitive carriage terms on YouTube TV and DirecTV Stream, inflating live TV prices. Unlike the facial recognition complaint, this one has an actual preliminarily-approved settlement; class notice opens July 7, 2026. See the Disney ESPN YouTube TV & DirecTV Stream settlement page for the schedule and eligibility.
Related Reading on OCA
• Latest class action news and updates• OCA database of open class action settlements
• Hot Data Breaches — tracking recent data breach litigation
How Do I Find Class Action Settlements?
Find all the latest class actions you can qualify for by getting notified of new lawsuits as soon as they are open to claims:Official Class Action Complaint (Court Document)
Frequently Asked Questions
Is there a Disney facial recognition settlement?No. This is a newly filed complaint, not a settlement. There is no claim form to submit and any potential recovery is years away.
What does the lawsuit allege Disney did wrong?
Beginning around April 28, 2026, Disney allegedly began collecting facial recognition biometric data from guests at the entrances of Disneyland Park and Disney California Adventure Park, without adequate disclosure or consent. The complaint alleges Disney misrepresented the voluntariness of the technology and the 30-day retention period.
Who filed the lawsuit?
Lead plaintiff Summer Christine Duffield, represented by Yagman PLLC. Filed May 15, 2026 in the U.S. District Court for the Southern District of New York. Case No. 1:26-cv-04072.
Does this cover Walt Disney World?
No. The complaint focuses on the California theme parks (Disneyland and Disney California Adventure). Walt Disney World in Florida is not within the scope of the alleged facial recognition collection.
What can I do if I visited Disneyland after April 28, 2026?
There is nothing to file at this stage. Preserve any Disney ticket or annual pass records you may have in case the case progresses to a settlement. Monitor this page for updates.
What are the next procedural steps?
Disney will likely file an answer or motion to dismiss within 21 days of service. After any early motion practice, the parties will move into discovery and class certification briefing. Class certification rulings in cases like this typically come 12 to 24 months after filing. Any settlement, if reached, would likely follow class certification or substantial motion practice.
Sources
• Duffield v. The Walt Disney Company and Disney DTC LLC, Case No. 1:26-cv-04072, U.S. District Court for the Southern District of New York (Class Action Complaint filed May 15, 2026)• Los Angeles Times: Disneyland Rolls Out Facial Recognition at Park Entrances (April 28, 2026)
• Hollywood Reporter: Disney Hit With Lawsuit Over Facial Recognition at Disneyland
• CBC News: Disney Sued Over New Facial Recognition Technology at Disneyland Entrances
• Biometric Update: Disney Hit With Class Action Over Facial Recognition at California Parks
• Help Net Security: Disney Facial Recognition Entrance Lanes (May 7, 2026)
• Disney Privacy Policy: Resort Facial Recognition Notice
• FTC Policy Statement on Biometric Information and Section 5 of the FTC Act (2023)
• Class Representative: Summer Christine Duffield
• Plaintiff's Counsel: Yagman PLLC (Blake Hunter Yagman)
• Presiding Judge: To be assigned (S.D.N.Y.)
Allegations Only · No Settlement Yet
This page covers a newly filed class action complaint. The allegations
described above have not been proven in court. Disney has not yet
filed an answer or motion to dismiss. There is no settlement, no
settlement fund, and no claim form. Any potential recovery for class
members would be years away if the case progresses through class
certification, summary judgment, trial, or settlement.
About This Page
This page summarizes the Disney facial recognition class action complaint filed in Duffield v. The Walt Disney Company, 1:26-cv-04072 (S.D.N.Y.). OpenClassActions.com is a consumer news site and is not a law firm, claims administrator, or party to this case. The allegations in the complaint have not been proven in court. Disney denies wrongdoing. This page is for informational purposes only and does not constitute legal advice. If you have questions about how this case may affect you personally, contact a qualified attorney in your jurisdiction.
For more class actions keep scrolling below.
Social Media Addiction
Status: Open
Pre-Qualify
Roblox - Investigation
Pre-Qualify Here
Submit Claim
$1.1M Team Group RAM Settlement
Pro Rata Cash · No Proof for Up to 5 Modules
Submit Claim
$68M Google Assistant Settlement
Deadline: August 27, 2026
Submit Claim
$87.5M Beef Prices Settlement
Deadline: June 30, 2026
Submit Claim
$31.5M Flagstar Data Breach Settlement
~$60 Cash + $100 CA · Up to $25K w/ Proof
Submit Claim| Disney Facial Recognition Case Snapshot | |
| Status | Complaint Filed — No Settlement, No Claim Form |
|---|---|
| Case Title | Duffield v. The Walt Disney Company and Disney DTC LLC |
| Case Number | 1:26-cv-04072 |
| Court | U.S. District Court for the Southern District of New York |
| Filing Date | May 15, 2026 |
| Lead Plaintiff | Summer Christine Duffield (Riverside County, California) |
| Defendants | The Walt Disney Company; Disney DTC LLC (data controller) |
| Plaintiff's Counsel | Yagman PLLC (Blake Hunter Yagman) |
| What's Alleged | Unlawful collection of facial recognition biometric data from Disneyland and Disney California Adventure guests, including children, without adequate consent, beginning around April 28, 2026 |
| Theme Parks Covered | Disneyland Park (Anaheim, CA); Disney California Adventure Park (Anaheim, CA) |
| Theme Parks NOT Covered | Walt Disney World (Florida) is not within the scope of this complaint |
| Counts | (1) California Constitution Right to Privacy; (2) Intrusion Upon Seclusion; (3) California UCL § 17200; (4) California CLRA § 1770 et seq.; (5) Unjust Enrichment |
| Proposed Classes | Nationwide Class + California Sub-Class (definitions identical; estimated thousands of class members) |
| Damages Sought | In excess of $5 million (CAFA threshold); actual, statutory, punitive, and exemplary damages; restitution; disgorgement of profits; injunctive and declaratory relief |
| Alleged Conduct Start Date | On or around April 28, 2026 (per complaint and Los Angeles Times reporting) |
| Disney's Public Position | Facial recognition is optional; non-facial-recognition lanes are available; data is deleted within 30 days except for legal or fraud-prevention purposes; the technology prevents ticket fraud and facilitates re-entry |
| Plaintiff's Counter-Position | Disclosure is inadequate; opt-out lanes are not clearly marked; children cannot meaningfully consent; the 30-day retention claim is inconsistent with comparing entry photos to ticket-purchase photos taken months or years earlier |
| FTC Context Cited | FTC Policy Statement on Biometric Information and Section 5 of the FTC Act (2023) |
| Other Jurisdictions Cited | Illinois (BIPA); Portland, Oregon (Chapter 34.10); Washington (Chapter 19.375 RCW); Nevada (NRS Chapter 603A); Texas (CUBI) — jurisdictions where Disney allegedly does NOT deploy this technology |
| Next Procedural Step | Disney to file answer or motion to dismiss (typically within 21 days of service); class certification briefing typically 12 to 24 months after filing |
| Is There a Claim Form? | No. There is no settlement and no claim form to submit. Class members do not need to take action at this stage. |
| Category | News / Class Action Complaint / Biometric Privacy / Facial Recognition / Theme Parks / Disney |