Re: TJX breach shows that encryption can be foiled

["Katie Felten" <kfelten () gmail com>]

We are seeing so much dataloss when will these companies begin to pay fines.

Katie Felten, CITRMS
Data Security & Privacy Specialist
Certified Identity Theft Risk Management Specialist 

www.getsmartcomply.com 
 
K Felten & Associates, LLC
N78W14573 Appleton Ave #297
Menomonee Falls, WI 53051
Direct   262-227-0772
Katie () k-felten com


-----Original Message-----
From: dataloss-bounces () attrition org [mailto:dataloss-bounces () attrition org]
On Behalf Of Donald Aplin
Sent: Tuesday, April 03, 2007 2:24 PM
To: Dissent
Cc: dataloss-bounces () attrition org; dataloss () attrition org
Subject: Re: [Dataloss] TJX breach shows that encryption can be foiled

Section 5 of the FTC Act does NOT provide for any fines
against companies for data security breaches.  CardSystems
was not fined a penny in the settlement with FTC, nor was
DSW in its settlement, nor BJ's before that.The presence of
an independent  Fair Credit Reporting Act claim in the
ChoicePoint action allowed for the imposition of a $10
million fine.


Donald G. Aplin
Legal Editor
BNA's Privacy & Security Law Report
(202) 452-4688

_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss
Tracking more than 203 million compromised records in 609 incidents over 7
years.

_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss
Tracking more than 203 million compromised records in 609 incidents over 7 years.