Consumers often are able to effect transactions by providing payment authorization ahead of time. How often a consumer may authorize a prescheduled transaction differs slightly under Regulation E and the National Automated...more
A leading online payments system platform that offers point-of-sale (POS) financing reports it received a Civil Investigative Demand (CID) from the Consumer Financial Protection Bureau (CFPB) for allowing educational...more
On October 28, 2020, the Eleventh Circuit Court of Appeals issued a split (7-3) en banc decision applying Spokeo principles to a claim that a vendor issued a receipt that included more digits from the plaintiff’s credit card...more
The predictions set forth in Experian’s Seventh Annual Data Breach Industry Forecast make sense and are worth a read. We are starting to see these types of intrusions and scams, and our experience is that once these types of...more
Last week, the Tex-Mex restaurant chain On the Border suffered a data breach that impacted its payment acceptance systems in 27 states. The restaurant says that some credit card information of customers who visited the chain...more
If you are a typical shopper, the last thing on your mind at the checkout counter is your printed credit card receipt. As you juggle your grocery store bags, you might absentmindedly fold the receipt into your wallet, or...more
The CFPB’s fourth biennial report on the credit card market was issued at the end of August. The Credit Card Accountability Responsibility and Disclosure Act of 2009 (CARD Act) requires the CFPB to perform periodic market...more
Everyone loves the convenience of the ATM. However, having 24/7 access to your money may mean that scammers do, too. Recent data from the credit scoring company FICO shows there was a 70 percent increase in the number of...more
Last Friday, the Third Circuit held that a J. Crew customer lacked standing to the sue company for printing ten digits of his credit card on a receipt, in violation of the Fair and Accurate Credit Transaction Act (which...more
Last month, the Eleventh Circuit revisited the U.S. Supreme Court’s controversial decision in Spokeo, Inc. v. Robins, and appears to have set a low bar for plaintiffs to clear in establishing standing....more
In a recent case involving hackers that stole "payment card data" from Chipotle, Judge William J. Martinez in the United States District Court for the District of Colorado found on an issue of first impression that payment...more
This week, in Siglin v. Sixt Rent A Car, LLC, 18-cv-62536, a proposed class action was filed against Sixt Rent A Car, LLC (“Sixt”) for its alleged failure to properly conceal consumers’ card and identification information on...more
For years, the signature requirement for completing a credit card transaction has felt something like an obsolete means of confirming a user’s identity. ...more
The U.S. Court of Appeals for the Seventh Circuit has reinstated a data breach class action filed against Barnes & Noble (B&N). The litigation, styled as Dieffenbach v. Barnes & Noble, Inc., now heads back to the U.S....more
The United States Supreme Court’s decision in Spokeo, Inc. v. Robins, 136 S. Ct. 1540 (2016), which holds plaintiffs without concrete injury lack standing to sue in federal court, relies on federal constitutional and...more
The U.S. Court of Appeals for the Second Circuit added its voice to the chorus of circuit courts of appeal to hold that allegations that defendants included the first six and last four digits of a plaintiff’s credit card...more
Retailers are still feeling the pain from implementing EMV-compliant POS systems. An article by Kate Fitzgerald in the PaymentsSource Technology newsletter (August 8, 2017) caught our eye....more
Kmart’s proposed settlement with banks that had to reimburse customers following Kmart’s 2014 data breach was approved by an Illinois federal judge last week with one caveat: he wants to see how much each bank is being paid...more
A lawyer’s nightmare: retailer Brooks Brothers announced late last week that it has become the newest retailer to suffer a payment card data breach. According to Brooks Brothers, which is calling it a “data incident”,...more
In the latest decision on Article III standing in a data breach case, the U.S. Court of Appeals for the Second Circuit ruled that a credit card holder – who neither pleaded specific facts about the time or effort spent...more
As we previously reported, Arby’s was hit with malware that infected over 1,000 of its fast food locations throughout the U.S. between October 25, 2016, and January 19, 2017, and was hit with multiple class action suits over...more
We previously reported that Wendy’s was hit with a putative class action shareholders’ derivative suit in December following its data breach in 2016. Late last week, the executives and Board of Wendy’s filed a Motion to...more
New filings in the consolidated Home Depot data breach litigation, which we have previously covered on this blog, indicate that Home Depot and the remaining financial institution plaintiffs have reached a settlement. ...more
Counsel for a class of card-issuing banks filed a settlement agreement on March 8 proposing a class settlement to resolve claims arising from the 2014 theft of payment card data from Home Depot point-of-sale terminals. The...more
Verifone, the largest maker of credit card point of sale terminals in the U.S., which assists various industries, including retailers, with credit and debit card swipe and process services, has affirmed that it is...more