Cari Fais
Director
Read Bio

Home
Division Units
- Alternative Dispute Resolution Unit
  Resolves disputes without having to go through the traditional court system
  Bureau of Securities
  New Jersey’s Securities Regulatory and Enforcement Agency
  Charities Registration & Investigation Section
  Administers and enforces the provisions of the Charitable Registration & Investigation Act
  Consumer Outreach
  Responsible for education and promoting awareness of scams targeting New Jersey residents.
  Criminal History Review Unit
  Coordinates state and federal criminal history record background checks of individuals applying for licensure or certification
  Drug Affordability Unit
  Implements prescription drug price transparency under P.L. 2023, c. 106
  
  High School Consumer Bowl
  Educational competition for high school students across New Jersey
  Legalized Games of Chance Control Commission
  Oversees the operation of games conducted pursuant to the Bingo and Raffles Licensing Laws
  Lemon Law Unit
  The Lemon Law Unit assists consumers who are experiencing defects in their new car, used car or motorized wheelchair or scooter
  New Jersey Drug Control Unit
  Assists in the enforcement of provisions of the New Jersey Controlled Dangerous Substances Act and the New Jersey Prescription Blanks Program
  New Jersey's Health Care Profile
  Information about the State's medical doctors, podiatrists and optometrists
  Office of Consumer Protection
  Primary investigative section for consumer complaints. The main responsibility of the OCP is to enforce the Consumer Fraud Act and its regulations
  Office of Weights and Measures
  Responsible for ensuring that all commercial weighing and measuring devices accurately measure the commodities sold to consumers
  Regulated Businesses Section
  Businesses We Regulate
  
  Division Initiatives
  
  Angelie's Law
  
  Anti-Fraud Toolkit
  
  Cyber Safe NJ
  
  Fighting Fraud
  
  Prescribing for Pain
  
  NJ Prescription Monitoring Program
  
  Project Medicine Drop
  
  Safe Care Cam Program
Boards & Committees
- Accountancy
  Acupuncture
  Alcohol and Drug Counselor
  Applied Behavior Analyst Examiner
  Architect
  Athletic Training
  Audiology and Speech-Language Pathology
  Cemetery
  Chiropractic Examiner
  Cosmetology and Hairstyling
  Court Reporting
  Creative Arts and Activities Therapy
  Dentistry
  Dietetics and Nutrition
  Electrical Contractor
  Electrologist
  Elevator/Escalator/Moving Walkway
  Fire Alarm, Burglar Alarm and Locksmith
  Genetic Counselor
  Hearing Aid Dispenser
  Hearth Specialist
  Home Inspection
  Homemaker-Home Health Aide
  HVAC and Refrigeration
  Interior Designer
  Joint Architects and Engineer
  Landscape Architect
  Marriage and Family Therapy
  Massage and Bodywork
  Medical Examiners
  Midwifery
  Mortuary
  Nursing
  Occupational Therapy
  Ophthalmic Dispenser/Technician
  Optometrist
  Orthotics and Prosthetics
  Perfusionist
  Pharmacy
  Physical Therapy
  Physician Assistant
  Plumber
  Polysomnography
  Pool and Spa
  Professional Counselor
  Professional Engineer/Land Surveyor
  Professional Planner
  Psychoanalyst
  Psychologists
  Real Estate Appraiser
  Respiratory Care
  Social Work
  Veterinary
  
  Board Related Information
  
  Laws & Regulations
  
  Adoptions & Rule Proposals
  
  Licensing Services & Renewals
  
  Healthcare Reporting Requirements
  
  New Jersey Drug Control Unit
  
  New Jersey Health Care Profile
  
  New Jersey Prescription Blanks
  
  Prescription Drug Price Registry
  
  Know Your Abortion Rights English | Spanish
NJPMP
News
- Consumer Briefs
  The New Jersey Division of Consumer Affairs protects the public from fraud, deceit and misrepresentation in the sale of goods and services. The Division developed Consumer Briefs to educate consumers about emerging frauds and topics that affect their daily lives
  
  Press Releases
  Read the latest news and information regarding the Division
  
  Publications
  The Division's library of consumer education materials, including newsletters and brochures
Contact
- Email
  
  General AskConsumerAffairs@dca.njoag.gov
  
  Initial Applications InitialApplications@dca.njoag.gov
  
  Renewal Applications RenewalApplications@dca.njoag.gov
  
  Press Office (For Reporters Only) DCAPress@dca.njoag.gov
  
  Call
  
  Consumer Service Center Hotline (973) 504-6200
  
  Toll free (NJ only) (800) 242-5846
  
  Visit
  
  124 Halsey Street
  Newark, New Jersey 07102
  Directions

Alert
On January 16, 2024, Governor Phil Murphy signed the New Jersey Data Privacy Law, P.L. 2023, c. 266. The law went into effect on January 15, 2025. Please click on this Frequently Asked Questions link to learn more about the new law and your rights under it.

Alert
On January 8, 2024, Governor Murphy signed into law P.L. 2023, c. 237, which, among other things: amended the Contractors’ Business Registration Act (“CBRA,” formerly the “Contractors’ Registration Act”), N.J.S.A. 56:8-136 et seq., and created the “Home Improvement and Home Elevation Contractor Licensing Act,” N.J.S.A. 45:5AAA-1 et seq. For more information on the registration requirements for contractors and businesses under these laws, click here.

Alert
On July 10, 2024, Governor Murphy signed into law the Real Estate Consumer Protection Enhancement Act, P.L. 2024, c.32, which, among other things, requires sellers of residential property located in New Jersey to use the "Seller's Property Condition Disclosure Statement" ("Disclosure Statement," questions 1 through 108).

Additionally, on July 3, 2023, Governor Murphy signed into law P.L. 2023, c.93, which, among other things, requires sellers of all real property located in New Jersey to make certain additional disclosures concerning flood risks on the "Disclosure Statement." On July 15, 2024, the Division published a "Flood Risk Addendum" to the Disclosure Statement (questions 109 through 117), which includes the additional disclosures concerning flood risks.

As a result of these two laws, effective August 1, 2024:

Sellers of residential property must complete the Disclosure Statement (questions 1 through 108). A copy of the Disclosure Statement is available here; and
All sellers of real property, both residential and non-residential, must complete the Flood Risk Addendum to the Disclosure Statement (questions 109 through 117). A copy of the Flood Risk Addendum is available here.

The Division has created an instruction sheet with additional information regarding the use of these forms. The forms linked above supersede any forms previously posted by the Division, including, but not limited to, the "Amended Disclosure Statement" posted on December 21, 2023.

Press Release

For Immediate Release: November 16, 2023 Office of The Attorney General Matthew J. Platkin, Attorney General Division of Consumer Affairs Cari Fais, Acting Director Division of Law Michael T.G. Long, Director	For Further Information Contact: Lisa Coryell, OAGpress@njoag.gov
AG Platkin: New Jersey to Receive $1.27 Million in Multistate Settlement with Morgan Stanley Over Data Security Incidents that Compromised Personal Information of Millions of Individuals Nationwide Security Lapses Affected Personal Information Belonging to More than 755,000 NJ Residents View Assurance of Voluntary Compliance TRENTON – Attorney General Matthew J. Platkin and the Division of Consumer Affairs announced today that New Jersey has entered into an overall $6.5 million multistate settlement with Morgan Stanley Smith Barney, LLC (“Morgan Stanley”) that resolves the states’ investigation into two data security incidents that compromised the personal information of more than 3.37 million individuals nationwide, including 755,592 New Jersey residents. Allegedly precipitated by Morgan Stanley’s hiring of outside vendors that improperly decommissioned thousands of electronic devices in 2016 and 2019, the data security incidents resulted in unauthorized third parties having the ability to access devices containing customers’ personal information – including names, addresses, phone numbers, account names, and numbers for Morgan Stanley accounts. The third parties also had access to customers’ linked bank accounts, Social Security numbers, birthdates, asset values, holdings data, and securities transaction information. Attorneys General in New Jersey, Connecticut, Florida, Indiana, New York, and Vermont commenced an investigation into the incidents to determine if Morgan Stanley’s conduct violated the states’ security, privacy, and consumer protection laws. Under an Assurance of Voluntary Compliance (“AVC”) filed with the Division of Consumer Affairs today, New Jersey is to receive approximately $1.27 million of the overall Morgan Stanley settlement payout. In addition to paying New Jersey and the other affected states, the settlement requires that Morgan Stanley take multiple steps to strengthen its data security and disposal procedures. “Individuals doing business with financial companies rightly expect those companies to maintain appropriate security measures and processes to prevent their personal information from falling into the wrong hands,” said Attorney General Platkin. “Security lapses that place consumer privacy at risk are unacceptable and we will continue to hold accountable companies that allow them to happen.” “Companies have a duty under our laws to protect consumers’ sensitive personal information and maintain proper oversight of devices that store such data,” said Cari Fais, Acting Director of the Division of Consumer Affairs. “Morgan Stanley’s systemic failure to properly oversee vendors responsible for the decommissioning, removal, and destruction of its devices put millions of consumers at risk of identity theft and other types of fraud. This settlement sends a clear message that security lapses of that magnitude come with significant consequences.” The multistate investigation was launched in July 2020 after Morgan Stanley notified the Attorneys General of two data security incidents: The first incident involved computer devices that were decommissioned and resold in connection with the closing of two data centers in 2016. While Morgan Stanley had contracted with a vendor to remove its data from the devices, it subsequently learned that the vendor subcontracted certain relevant services to an unauthorized entity, and that certain devices still contained some unencrypted personal information. The second incident involved a software flaw that could have resulted in unencrypted data fragments remaining on the affected devices that Morgan Stanley was unable to locate following a decommissioning event; the data fragments may have remained on the affected devices as a result of a manufacturer flaw in encryption software. The investigation determined that Morgan Stanley failed to maintain adequate vendor controls and hardware inventories, and that, had these controls been in place, the data incidents could have been prevented. Specifically, the states found that Morgan Stanley failed to confirm that the vendors were operating in compliance with their contractual obligations and failed to review documentation provided by vendors related to device decommissioning. These failures resulted in unauthorized third parties receiving devices containing personal information that, in some cases, had no restrictions to access. Morgan Stanley is required under the settlement to maintain appropriate security measures and processes to help prevent these types of incidents from occurring in the future. Those measures and processes include: maintaining a comprehensive information security program that is reasonably designed to protect the security, confidentiality, and integrity of personal information collected directly or indirectly by Morgan Stanley; maintaining a comprehensive written incident response plan that requires Morgan Stanley to investigate data security incidents that are reasonably suspected to involve personal information; employing manual processes and, where practicable, automated tools to regularly inventory, classify, and issue reports on all hardware containing consumer personal information; maintaining and regularly updating an inventory of all active vendors and a copy of active vendor contracts, including maintaining a risk rating protocol for evaluating its vendors; in all contracts entered into after the effective date of the AVC, requiring vendors that Morgan Stanley engages to dispose of consumer personal information (“Disposal Vendors”) to implement specific data security requirements for protecting that information, in particular by contractually requiring Disposal Vendors to take reasonable measures to securely dispose of such information, and by contractually requiring them to appropriately document and provide Morgan Stanley with receipt of its disposal activities; and requiring that Disposal Vendors agree to flow-down Morgan Stanley’s security requirements to subcontractors. Deputy Attorney General Cody I. Valdez under the supervision of Data Privacy & Cybersecurity Section Chief Kashif T. Chand and Assistant Section Chief Thomas Huynh, within the Division of Law’s Affirmative Civil Enforcement Practice Group, represented the State in the matter. Investigator Aziza Salikhova of the Office of Consumer Protection within the Division of Consumer Affairs conducted the investigation ###

Last Modified: 11/16/2023 9:19 AM

RSS

Sign up for New Jersey Division of Consumer Affairs RSS feeds to get the latest information. You can select any category that you are interested in, and any time the website is updated you will receive a notification.

More information about RSS feeds.

Division Initiatives

Board Related Information

Email

Call

Visit

Press Release

Division

Department

State

Legal

RSS