Debit Cards Credit Cards

News & Analysis as of

New FTC Data Breach Response Guidelines

Cybersecurity should always be at the top of any retailer’s priority list—and even more so as the holiday shopping season gets underway. To that end, the Federal Trade Commission’s newly-released Data Breach Response...more

FCAC Issues New and Amended Code of Conduct Guidance

On July 29, 2016, the Financial Consumer Agency of Canada (FCAC) published the following guidance documents on its website: - Amended Commissioner’s Guidance 10 (CG-10) – Increased Disclosure in Sales and Business...more

What Have Merchants Gained from Payment Card Antitrust Litigation?

In recent years, federal antitrust enforcers and businesses that accept payment cards have been waging a slow war against payment card fees and the card network rules that protect them. The payment card industry’s antitrust...more

Network Rules Occupy Second Circuit, U.S. Supreme Court

Issues surrounding network rules made headlines recently, with the Second Circuit Court of Appeals rejecting a $7.25 billion deal between Visa and MasterCard and approximately 12 million merchants claiming the networks worked...more

Shareholder Derivative Suit Following Data Breach Misses Target

On July 7, 2016, Judge Paul A. Magnuson of the United States District Court for the District of Minnesota granted Defendants’ Motions to Dismiss a shareholder class action that had been initiated following a 2013 holiday...more

Omni Hotels latest hotel chain hit with malware

Omni Hotels notified guests on Friday, July 8, 2016, that its point of sale systems were compromised with malware from December 23, 2015, through June 15, 2016....more

PCI DSS v. 3.2: New Requirements Coming to Protect Your Customers’ Wallets

The Payment Card Industry (PCI) Security Standards Council (PCI Council) released Version 3.2 of the PCI Data Security Standard (PCI DSS), containing several new requirements for merchants, acquirers, and other entities that...more

Does Your Company Have Coverage for PCI Fines & Penalties in its Cyber Policy?

Payment Card Industry fines and penalties are fines charged by payment card brands like Mastercard and Visa to merchants’ acquiring banks for violation of their industry rules and regulations, which often occurs when there is...more

UK Payment Systems Regulator Issues Guidance Setting Credit and Debit Interchange Caps

On March 24th, the United Kingdom’s Payment Systems Regulator (PSR) issued final guidance establishing interchange fee caps on credit and debit card transactions where the point of sale is located in the United Kingdom. The...more

Payment Systems Regulator Issues Final Guidance On Its Approach To The Interchange Fees Regulation

The UK’s Payment Systems Regulator (PSR) has published its final “Guidance on [its] approach as a competent authority for the EU Interchange Fee[s] Regulation“. This guidance explains how the PSR will monitor and enforce the...more

Year in Review: Legislation and Guidance for Financial Institutions in 2015

Financial institutions in Canada witnessed yet another year of significant growth in legislation and regulatory guidance impacting their operations, while the financial marketplace is continuing to adapt to the impact of...more

Treasury publishes card fees response

Treasury has published the government’s final approach to implementing the Interchange Fee Regulation, following its consultation on rules to cap the fees charged by banks to their business customers for processing credit and...more

American Thrift Stores announces data breach

American Thrift Stores announced this week that like other retailers, it has been hit with a security breach “that occurred through software used by a third-party service provider” that allowed “criminals from Easter Europe”...more

Credit Card Fraud Liability Shift is Here

Most credit and debit cards in the U.S., and the point of sale terminals and ATMs that read them, still use “magnetic stripe” technology. Magnetic stripes are obsolete and relatively insecure, allowing fraudulent practices...more

New PCI Guidance Provides Businesses With Security Incident Response Assistance

A security event involving payment card data, especially card present data, can be one of the most costly events a company may face. Not only did a recent study report the average total cost of a data breach as $3.8 million,...more

Trump Hotel Collection Confirms Year-Long Data Breach

Trump Hotel Collection, the high-end hotel chain owned by the billionaire Republican presidential hopeful and real estate developer Donald Trump, has confirmed a data security breach involving malware that the company says...more

Notifying Parties In Username/Password Breaches . . . It’s Not Just the Law

As we head into the end of 2015, state legislators across the country continue to strengthen, update and, in some instances, broaden the scope of their respective state data breach notification laws. Specifically, many...more

Still a Target: Court Certifies Bank Class Claims Against Retailer Following Data Breach

Although Target has tentatively settled consumer data breach class action claims, the retailer remains in the crosshairs of the plaintiffs’ class action bar. On September 15, a Minnesota federal district court certified a...more

Circuit Split on Standing in Data Breach Class Actions Survives Clapper

Last Friday, the Seventh Circuit Court of Appeals denied a retailer’s petition for rehearing en banc of a three-judge panel opinion holding that plaintiffs whose credit card information was stolen in a data breach had...more

Chip-and-PIN (EMV) Credit Card Liability Shift is Oct. 1: Are You Ready?

October 1 is right around the corner. Merchants, retailers, hotels and restaurants: are you ready for what’s in your customers’ wallets? Starting next month, the payment card industry’s transition to chip-and-PIN (also known...more

3rd Circuit Says: FTC Can Take Action Against Companies That Suffer Data Security Breaches

Companies can be fined by the federal government for failing to properly safeguard consumer data, according to a decision this week by Pennsylvania's federal appellate court....more

Third Circuit Affirms FTC Authority to Police Whether Companies Have Reasonable Data Security

Since at least 2005, the Federal Trade Commission has asserted that it may regulate lax data security practices as an “unfair” business practice under Section 5 of the FTC Act. The Wyndham hotel chain was the first to...more

Third Circuit to Wyndham (Part I): It's "Fair" that FTC Did Not Articulate Specific Cybersecurity Standards in Enforcement Action...

On Monday, the Third Circuit issued a highly anticipated opinion affirming the Federal Trade Commission's authority to regulate "unfair" cybersecurity practices under Section 5 of the FTC Act. In allowing the data breach...more

On the Reidentifiability of Credit Card Metadata

PLA today posts a link to “Unique in the Shopping Mall: On the Reidentifiability of Credit Card Metadata,” which concludes that card transaction data that was anonymized in conventional ways (e.g., by removing names and...more

UPDATE: Third Circuit Affirms FTC’s Data Security Authority in Wyndham

The U.S. Court of Appeals for the Third Circuit released its much-anticipated ruling in Federal Trade Commission v. Wyndham Worldwide Corp. on August 24, 2015, unanimously upholding the FTC’s authority to regulate companies’...more

51 Results
|
View per page
Page: of 3
JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×