Data breaches don’t always hit the headlines, but most do, especially when there are continuing implications. MediaPost brought this interesting news to our attention in their article, “Macy’s Sued Over Reported Customer Data Breach.”
Recently it was reported that the retail giant informed some online customers that sensitive personal data, including credit card information, had been exposed in a data breach. Now, Macy’s has been hit with a class-action lawsuit over that breach of customer data.
The case charges that Macy’s failed to protect personally identifiable information and that it waited almost a month to notify customers after discovering the cyber attack by a third party.
Customers with profiles on Macys.com or Bloomingdales.com were told in the letter that an unauthorized party accessed some accounts from April 26 to June 12 using valid usernames and passwords.
The complaint argues that Macy’s stores massive amounts of personally identifiable information on their servers and utilizes this information to maximize their profits through predictive marketing and other marketing techniques, while leaving customers’ data at risk.
Melody K. Smith
Sponsored by Data Harmony, a unit of Access Innovations, the world leader in indexing and making content findable.