[Dataloss] TJX breach shows that encryption can be foiled
Katie Felten
kfelten at gmail.com
Tue Apr 3 20:47:39 UTC 2007
We are seeing so much dataloss when will these companies begin to pay fines.
Katie Felten, CITRMS
Data Security & Privacy Specialist
Certified Identity Theft Risk Management Specialist
www.getsmartcomply.com
K Felten & Associates, LLC
N78W14573 Appleton Ave #297
Menomonee Falls, WI 53051
Direct 262-227-0772
Katie at k-felten.com
-----Original Message-----
From: dataloss-bounces at attrition.org [mailto:dataloss-bounces at attrition.org]
On Behalf Of Donald Aplin
Sent: Tuesday, April 03, 2007 2:24 PM
To: Dissent
Cc: dataloss-bounces at attrition.org; dataloss at attrition.org
Subject: Re: [Dataloss] TJX breach shows that encryption can be foiled
Section 5 of the FTC Act does NOT provide for any fines
against companies for data security breaches. CardSystems
was not fined a penny in the settlement with FTC, nor was
DSW in its settlement, nor BJ's before that.The presence of
an independent Fair Credit Reporting Act claim in the
ChoicePoint action allowed for the imposition of a $10
million fine.
Donald G. Aplin
Legal Editor
BNA's Privacy & Security Law Report
(202) 452-4688
_______________________________________________
Dataloss Mailing List (dataloss at attrition.org)
http://attrition.org/dataloss
Tracking more than 203 million compromised records in 609 incidents over 7
years.
More information about the Dataloss
mailing list