Algorithmic Pricing 2026 Business Risks: What Companies Should Review Now

If your company uses customer data, pricing tools, AI-driven recommendations, or dynamic offers, this is one of the more important legal developments in the market right now.

What started as a policy and consumer-protection conversation is turning into a practical outside-counsel issue for retailers, hotels, travel businesses, marketplaces, e-commerce companies, and other businesses that use personal data to influence what a consumer sees and pays. California’s Attorney General announced an investigative sweep on January 27, 2026 focused on “surveillance pricing,” and New York already has a disclosure law in effect for certain personalized algorithmic pricing.

Todd Nurick of Nurick Law Group, LLC, a Pennsylvania and New York business attorney, helps companies translate fast-moving regulatory developments into practical contract, disclosure, privacy, governance, and risk-management decisions before those issues turn into investigations, disputes, or reputational problems.

Algorithmic Pricing 2026 Business Risks are not limited to companies intentionally trying to charge different customers different prices. They can also affect businesses that use personal data to tailor offers, rankings, promotions, discounts, service bundles, or price displays in ways that may trigger disclosure, privacy, or unfairness concerns. Reuters attorney analysis, the FTC’s surveillance-pricing study materials, and California’s January 2026 sweep all point in that direction.

Algorithmic Pricing 2026 Business Risks: why this matters now

The legal risk here is getting more concrete because regulators are no longer treating algorithmic or “surveillance” pricing as an abstract future issue.

California Attorney General Rob Bonta announced that his office is investigating businesses’ use of consumers’ personal information to set targeted, individualized prices, and said those practices may trigger obligations under, and even violate, the California Consumer Privacy Act. The sweep targeted sectors including online retailers, grocery stores, and hotels.

At the same time, New York’s Algorithmic Pricing Disclosure Act, General Business Law Section 349-a, is already on the books and requires certain businesses using personalized algorithmic pricing to provide a clear and conspicuous disclosure. Reuters attorney analysis reported that the New York Attorney General has investigated compliance and has taken the position that the disclosure may need to appear wherever prices are displayed, not just behind a hyperlink.

For companies, that means this is no longer just a “watch this space” issue. It is now a live governance, disclosure, and operational issue, especially for businesses selling to consumers across multiple states. That is an inference, but it is strongly grounded in California’s enforcement posture and New York’s enacted disclosure regime.

What regulators seem to care about most

The common thread is not simply that prices change.

The concern is whether a company is using personal data, such as browsing history, location, shopping behavior, or other linked information, to individualize prices or price-related experiences without adequate transparency, lawful data-use practices, or alignment between what the company is doing and what it told consumers it was doing. The FTC’s January 2025 surveillance-pricing materials described exactly that kind of ecosystem and noted the use of personal data to set individualized consumer prices.

That makes this a broader outside-counsel issue than many companies may realize. A business can create exposure here through pricing strategy, privacy disclosures, vendor contracts, loyalty-program design, website architecture, and marketing claims, even if nobody inside the company is calling it “surveillance pricing.” That is an inference, but it follows directly from the kinds of data use and disclosure concerns identified by regulators and legal analysis in this area.

Algorithmic Pricing 2026 Business Risks in pricing disclosures and privacy practices

This is where many companies may be more exposed than they think.

If a business is using personal data to influence the price shown to a consumer, the discount offered, the ranking of products, or the timing of price changes, counsel should be asking:

• what data is being used

• whether that use is disclosed accurately

• whether the company’s privacy policy actually matches operational reality

• whether the business is selling into New York consumers and may need a pricing disclosure

• whether the company’s California privacy posture is defensible if regulators ask how consumer data is being used in pricing or offer logic

• whether internal teams are documenting these practices clearly and consistently

  
  

The Reuters attorney analysis specifically noted that the FTC has a history of enforcement where public statements about data use do not line up with actual practices, and California’s press release similarly ties surveillance pricing scrutiny to CCPA obligations.

This is also a vendor-contract and procurement issue

A lot of businesses do not build these tools themselves. They buy them.

That creates a second layer of risk. If an outside vendor provides pricing, ranking, recommendation, or optimization tools that rely on personal data, your company may still be the one facing the consumer, the regulator, or the plaintiff.

Outside counsel should be looking closely at vendor agreements for:

• data-use restrictions

• allocation of responsibility for disclosures

• audit rights and documentation access

• compliance representations

• indemnity language

• limits on model or tool changes that could materially alter pricing behavior without notice

  
  

The FTC’s surveillance-pricing study focused in part on third-party intermediaries and vendors that use consumer data and algorithms to help businesses target prices, which makes vendor diligence particularly important here.

Algorithmic Pricing 2026 Business Risks in customer trust and reputational exposure

Even when a pricing practice is not clearly unlawful, it can still create a trust problem.

That matters because the practical business fallout can come from multiple directions at once: a regulator asking questions, a class-action lawyer testing a theory, a journalist highlighting price discrepancies, or customers concluding that the business is treating them unfairly. Reuters attorney analysis noted that dynamic pricing discourse intensified after reporting that prices on Instacart sometimes differed materially from one customer to another.

For many companies, the reputational question and the legal question are going to overlap. If a company would be uncomfortable explaining its pricing logic publicly, that is often a sign that legal, privacy, marketing, and product teams should review the practice more closely before someone else does. That is an inference, but it is a reasonable one given the enforcement and public-scrutiny trend described by Reuters and the California Attorney General.

Why this is a strong outside-counsel topic for companies right now

This is exactly the kind of issue where companies often need practical, business-facing legal guidance rather than an academic memo.

Most clients do not need a long theoretical discussion of algorithmic pricing. They need answers to questions like:

• Are we doing anything that falls into this category?

• Do we need to disclose it?

• Do our privacy disclosures line up with what the pricing tool actually does?

• Are our vendors giving us enough protection and transparency?

• Is this a California issue, a New York issue, or both?

• If regulators ask questions, are we ready to answer them clearly?

  
  

That makes this a useful post for companies because it ties a buzzy current issue to concrete action items. It is also a strong outside-counsel issue because the work touches privacy, consumer protection, contract review, internal governance, and risk communication all at once.

Practical steps companies should take now

If your company sells to consumers and uses personal data in pricing or price-adjacent decisions, here are sensible next steps:

• map whether and how personal data is used in pricing, discounting, ranking, and offer presentation

• review privacy policies, consumer disclosures, and internal explanations for consistency with actual practice

• assess whether New York disclosure requirements may apply to your pricing flows

• review California exposure if pricing practices rely on personal data in ways consumers may not reasonably expect

• tighten vendor contracts and ask for better documentation of how pricing tools work

• involve legal earlier when product, pricing, growth, and data teams deploy new optimization tools

• think through how the company would explain its pricing approach to a regulator, journalist, or jury

  
  

Those steps are useful even if no regulator ever calls, because the same exercise often improves internal governance and reduces mismatch between what the business says and what the business actually does.

Conclusion

Algorithmic pricing is no longer just a hot policy phrase. It is becoming a real legal and operational issue for companies that use personal data to shape pricing, discounts, rankings, or consumer offers.

Algorithmic Pricing 2026 Business Risks matter because regulators are now moving past theory and into investigations, enacted disclosure rules, and closer scrutiny of whether companies’ data practices and public statements line up. That means businesses should not wait for a formal complaint or investigation before reviewing what their pricing tools are actually doing.

If your company uses pricing tools, recommendation engines, personalization, or AI-driven consumer optimization, Todd Nurick and Nurick Law Group, LLC can help assess the legal exposure, tighten disclosures, review vendor contracts, and bring practical structure to a fast-moving risk area.

Sources

• California Attorney General, On Data Privacy Day, Attorney General Bonta Focuses on Surveillance Pricing Compliance, January 27, 2026 

• Reuters attorney analysis, Amidst uncertainty from FTC, states zero in on dynamic and algorithmic pricing, March 4, 2026 

• New York General Business Law Section 349-a, Pricing 

• FTC, Surveillance Pricing Study Indicates Wide Range of Personal Data Used to Set Individualized Consumer Prices, January 17, 2025 

• FTC, Surveillance Pricing Update and the Work Ahead, January 17, 2025 

  
  

Disclaimer: This article is for informational purposes only and is not legal advice. Reading it does not create an attorney client relationship. Todd Nurick and Nurick Law Group are not your attorneys unless and until there is a fully executed written fee agreement with Todd Nurick or Nurick Law Group.