Retailers Personally Identifiable Information

News & Analysis as of

Retail Industry EMV Compliance Deadline Arrives Today - Credit Card Fraud Liability Shifts

Starting today, October 1, 2015, a substantial portion of the liability associated with in-store fraudulent credit card purchases shifts from credit card issuers, such as banks or credit unions, to retail merchants. Credit...more

Class In Session: Minnesota Federal Court Certifies Class In Target Corporation Data Breach Suit

On September 15, 2015, a federal district court in Minnesota granted a motion for class certification of hundreds of credit unions and banks in an action against Target Corporation for damages stemming from the breach of...more

Seventh Circuit Court of Appeals Reverses Dismissal of Data Breach Class Action – Finds Standing

The Seventh Circuit Court of Appeals’ recent ruling in Remijas v. Nieman Marcus, 2015 U.S. App. LEXIS 12487 (7th Cir. July 20, 2015), reversed the lower court and held that customers of luxury retailer Neiman Marcus had...more

Remijas v. Neiman Marcus: Seventh Circuit Affords Broad Standing To Sue Over Consumer Data Breaches

When hackers breach a business’s systems, class actions are sure to follow. Often, however, these suits have faltered right out of the starting gate. Citing the Supreme Court’s 2013 decision in Clapper v. Amnesty...more

Seventh Circuit Holds That Risk of Future Fraudulent Charge on Credit Card Sufficient to Withstand Motion to Dismiss

During the 2013 holiday season, Neiman Marcus, like many other retailers, discovered that its payment card systems had been compromised and customers’ credit and debit card information was potentially stolen....more

Did the 7th Circuit Just Ease the Way for Consumer Data Breach Lawsuits?

On July 20, 2015, a federal appeals court in Chicago issued what could be a watershed ruling in favor of consumers pursuing class action lawsuits against retailers and other companies following data breaches that involve the...more

Zappos proposed data breach class action litigation dismissed

Continuing the growing trend of dismissing data breach cases when there is no evidence of actual harm, the United States District Court for the District of Nevada last week dismissed a class action case filed against Zappos...more

Sally Beauty Reports 2nd Data Breach

Sally Beauty Holdings, Inc. (Sally) confirmed that it has suffered a second data breach in the last year. On March 14, 2014, KrebsOnSecurity reported that credit cards stolen from Sally had gone up for sale on an Internet...more

In-Store Monitoring: How to Enjoy the Benefits of Tracking While Minimizing Potential Privacy Issues

In the latest example of the conflict between technological innovation and privacy concerns, the Federal Trade Commission (FTC) reached a settlement agreement last month with Nomi Technologies, Inc. Nomi is a startup...more

Significant Song-Beverly Developments Continue—Court of Appeal Signals it May Be Ready to Articulate a Bright Line Test of When a...

On May 13, the California Court of Appeal heard oral arguments for Harrold v. Levi Strauss, a case involving the question of whether a retailer violates the Song-Beverly Credit Card Act (“Song-Beverly”) by requesting a...more

Important Breaking Development: California’s Song-Beverly “Consumer Perception Test” in Jeopardy — Will Retailers in California Be...

On May 5, 2015, the Ninth Circuit certified for the California Supreme Court the issue of whether the Song-Beverly Credit Card Act (“the Act”) prohibits retailers from requesting a customer’s personal information at the...more

Large Retailer Agrees to Pay $10 Million Related to Data Breach Incident

On March 19, a district court granted preliminary approval in which a large retailer agreed to pay $10 million to settle a class-action action suit related to a 2013 data breach, which resulted in the compromise of at least...more

A Gift for New Jersey Gift Card Issuers and Retailers: Consumer Data Collection Requirements Eliminated by S.B. 2235

Retailers and issuers of gift cards in New Jersey recently received welcome news: they no longer have to worry about looming consumer data collection requirements. Under existing law, beginning in July 2016, gift card (also...more

SMS to Customers Seeking “Opt-In” for Advertisements May Violate TCPA

Customers who walked into a Bebe clothing store, purchased clothing, provided their phone numbers during the sale, and later received a text inviting them to “opt-in” to a list for additional discounts have a claim against...more

California Prosecutors Settle PHI Breach with Retailer

Beginning in 2012, California environmental regulators and others began investigating the grocery store chain Safeway relating to the company’s waste disposal practices. During the investigation, certain documents listing...more

UK's Information Commissioner's Office Enters Corrective Action Agreement With Shoe Retailer For Data Breach

On January 19, 2015, the United Kingdom’s Information Commissioner’s Office (“ICO”) — an independent UK body created to uphold information rights — published a corrective action agreement with shoe retailer Office Holdings...more

Court Allows Consumers To Proceed With Data Breach Class Action Against Target

On December 18, 2014, the U.S. District Court for the District of Minnesota ruled, in a 46-page opinion, that a putative class of consumers could proceed with a majority of their claims against Target arising from the data...more

Class Certification Trends in Consumer Data Breach Litigation—Individualized Damages Theories May Preclude Certification

In the last two years, there has been a proliferation of class action lawsuits filed in response to high-profile data breaches compromising the personally identifiable information of customers of various companies. Major...more

Top 12 Ways Retailers Can Address Privacy Issues This Holiday Season

In this installment of “Perkins Coie Wrapping Papers,” we take inspiration from “The Twelve Days of Christmas” to provide an overview of the top twelve privacy and data security issues retailers should consider as the year...more

For companies, perils abound when soliciting information at point of sale

Of all of the numbers that are part of your daily personal life, which are important enough to keep private? Your Social Security number? Definitely. Your date of birth? Maybe — depending on how cautious (and how old)...more

Payment Industry Council Issues Best Practices For Security Awareness

Recently, the Payment Card Industry (PCI) Security Standards Council published guidance to help organizations strengthen their security awareness. The guidance, developed by retailers, banks, and technology providers, details...more

’Tis the Season for Data Breaches, Identity Theft

As U.S. consumers head into the shopping season – the weather is getting cooler, and the holidays are getting closer – it is a good idea to take extra precautions to protect bank accounts, credit cards and personal identity....more

California Passes New Law Protecting Consumers From Data Breaches

On September 30, 2014, Governor Jerry Brown signed Assembly Bill 1710, authored by Assembly Members Roger Dickinson (D-Sacramento) and Bob Wieckowski (D-Fremont). AB 1710 enhances consumer protections by strengthening the...more

Why Worry About a Little Skimmer?

Merchants—rightfully so—are worried about securing their payment card environments so that their name does not appear in a headline discussing how millions of cards were stolen from them. Faced with the challenge of...more

New Guidance for Merchants on Ensuring that Service Providers Share Security Responsibility

For merchants, long gone are the days of using a card reader with a dial-up connection to their payment processor. Today’s omni-channel retailers rely on multiple third party service providers to complete payment card...more

49 Results
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.