Data Breach Settlement

News & Analysis as of

Early Settlement of the Home Depot Consumer Data Breach Claims – The Start of a Trend?

Last week, a federal court in Atlanta issued an order preliminarily approving a proposed settlement – valued up to $19.5 million – of the consumer claims arising from the 2014 theft of payment card data from Home Depot. The...more

Wyndham Settles with FTC

Last month, Wyndham Worldwide Corp. settled its lengthy civil case with the Federal Trade Commission. The suit began in 2012, when the FTC sued Wyndham and three of its subsidiaries, alleging three data breaches between 2008...more

FTC and Wyndham Settle Suit Regarding Wyndham's Alleged Cybersecurity Failures

On December 9, 2015, the Federal Trade Commission (the "FTC") and Wyndham Worldwide Corporation (and three additional Wyndham entities, collectively, "Wyndham") filed a stipulated order ("Stipulated Order") settling their...more

Uber Enters Into Settlement Regarding May 2014 Data Breach, Halting New York Attorney General’s Investigation Into Uber’s...

On Wednesday, January 6, 2016, New York’s Attorney General announced a settlement with Uber Technologies, Inc. (“Uber”), which requires the company to institute a number of practices intended to increase the data privacy of...more

As if a 20-Year Consent Order Wasn’t Enough Fun: FTC Brings First Monetary Settlement in Information Security Case

The FTC reached a $250,000 settlement with a 20-year consent order with Henry Schein Practice Solutions, Inc. over its use of allegedly subpar encryption technology in its offering to dental practices. This settlement is...more

The FTC Strikes Back: LifeLock, Inc. Agrees to $100 Million Payout

On December 17, 2015, the Federal Trade Commission (FTC) announced a $100 million settlement with LifeLock, Inc., to resolve litigation with the FTC and a national class of consumers relating to LifeLock’s marketing...more

FTC and Wyndham Call a Truce

Following the Third Circuit’s ruling upholding the FTC’s authority to regulate unfair and deceptive cybersecurity practices under Section 5 of the FTC Act, Wyndham Worldwide Corporation and the FTC have agreed to settle. ...more

Target Settles Data Breach Class Action Suit With Banks For $39 Million

Target has agreed to a $39 million settlement in a class action suit with several U.S. banks stemming from Target’s massive 2013 data breach. That data breach affected customers who shopped at U.S. Target stores between...more

University with Multiple Covered Entity Components Enters Into $750,000 HIPAA Settlement

On December 14, 2015, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) announced a $750,000 settlement with the University of Washington (UW). This is the third HIPAA settlement announced by OCR...more

Wyndham Agrees to Settle FTC Data Security Case

After four years of litigation, this past Wednesday, Wyndham Worldwide Corporation and three of its subsidiaries (collectively, “Wyndham”) settled the Federal Trade Commission’s (“FTC”) allegations that the global...more

Wyndham and FTC Settle Case Over “Unfair” Data Security Practices

The years-long saga of the Federal Trade Commission’s suit against Wyndham Hotels over data breaches that occurred at least as early as April 2008 is finally coming to an end with a proposed settlement filed today with the...more

Wyndham and FTC Settle Data Breach Lawsuit: Implications

On December 9, 2015, Wyndham and the FTC settled the enforcement action brought by the FTC that had led to a significant decision by the Third Circuit in August of this year. While the details of the settlement are...more

Wyndham settles with FTC

We have been following the hard fought case between the FTC and Wyndham over an investigation that was launched by the FTC following a series of data breaches of Wyndham’s payment card information between 2010 and 2012 (see...more

Stolen, Unencrypted Laptop Leads to $850,000 Settlement and Comprehensive Corrective Action Plan for Massachusetts Teaching...

The U.S. Department of Health and Human Services, Office of Civil Rights (OCR), has announced a settlement with Lahey Hospital and Medical Center (Lahey) that arose out of a HIPAA breach involving a stolen laptop. The...more

Target Agrees to $39 Million Settlement with Credit Card Issuers’ Data Breach Claims

Still recovering from its 2013 data breach, Target Corp. agreed to a $39 million settlement with a class of banks suing the well-known retailer, marking the settlement as the first class-wide data breach pact ever reached on...more

Target settles data breach class action with financial institutions for $39 million

We previously reported that Target Corp.’s (Target) settlement with MasterCard was rejected, but now, Target agreed to pay $39 million to settle the class action filed against it on behalf of the financial institutions...more

Target Settles With Credit Card Issuers

Today, Target and a class of banks that issued credit cards that were compromised in the Target data breach announced they have reached a $39.4 million settlement. Up to $20,250,000 of the settlement will go to a...more

Sony's Data Breach Woes Headed for Relief

Another chapter in Sony Corporation’s data breach woes appears headed for settlement. This latest chapter, which follows other well-publicized Sony data breaches, began when hackers took control of the company’s computer...more

District Court Grants Final Approval In Target Consumer Data Breach Class Action

On November 17, 2015, the federal district court overseeing the Target data breach litigation granted final approval to the consumer class action arising out of the 2013 Target data breach. The court certified, for final...more

FCC Settles Data Breach Investigation with Cox Communications

Recently, the Enforcement Bureau of the Federal Communications Commission (FCC) entered into a settlement with Cox Communications (Cox) resolving an investigation into whether the cable operator failed to properly protect its...more

SEC Fines Investment Firm $75,000 for Failing to Adopt Written Cybersecurity Policies and Procedures

Investment firm R.T. Jones Capital Equities Management (R.T. Jones) has agreed to settle with the Securities and Exchange Commission (SEC) and pay a $75,000 penalty over charges that it failed to adopt written policies and...more

Hacked Investment Advisor Fined $75,000 for Lack of Cyber-Security Measures

Many in the investment advisory community are following the story of R.T. Jones Capital Equities Management, an investment advisor that, according to the Securities and Exchange Commission (SEC), suffered a hack exposing the...more

SEC Announces Cybersecurity Enforcement Action

On September 22, 2015, the Securities and Exchange Commission (SEC) announced the settlement of an enforcement action against a St. Louis-based registered investment adviser (Adviser) brought under Rule 30(a) of Regulation...more

SEC Charges Investment Adviser with Failure to Adopt Required Cybersecurity Policies Prior to Breach

On September 22, the Securities and Exchange Commission (SEC) announced that it had entered into a settlement order with R.T. Jones Capital Equities Management, Inc. (R.T. Jones), a St. Louis-based SEC registered investment...more

Cure of Security Rule Violations Following Breach of EPHI Cannot Save Covered Entities from $750,000 Settlement; Non-Breach...

More than three years after the Cancer Care Group, P.C. (“CCG”) notified the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) of a breach of unsecured electronic protected health...more

89 Results
|
View per page
Page: of 4
JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×