Exposing Private Information
Are data breaches getting bigger, involving more and more people? The complaint for this class action claims that information for one hundred million people was exposed in the data breach involving Capital One Financial Corporation, Capital One, NA, and Capital One Bank (USA), NA. It claims that Capital One should be held responsible for not properly protecting the
Chipotle Mexican Grill has agreed to a settlement of a class action alleging that it is responsible for a data breach at some of its Chipotle and Pizzeria Locale restaurants. The lawsuit alleged that hackers may have had access to customer payment information.
Eddie Bauer, LLC is settling a class action brought on behalf of financial institutions with respect to a 2016 data breach. The complaint alleged that Eddie Bauer bears responsibility for the data breach and should pay financial institutions for the expense of reissuing cards, covering fraudulent charges on cards, and so on.
Quest Diagnostics calls itself “the world’s leading provider of diagnostic information services.” LabCorp is also a global laboratory offering diagnostic services. Quest uses Optum360, LLC for billing collections, and both Optum and LabCorp use AMCA for collections. This means that when AMCA suffered an extended data breach, medical and personally identifying information (PII) for millions of people was exposed.
Michigan’s Preservation of Personal PrivacyAct (PPPA), before its amendment on July 31, 2016, prohibited companies from sharing Personal Reading Information from the subscribers and purchasers of their publications. The complaint for this class action alleges that the Kiplinger Washington Editors, Inc. at that time shared subscriber information with third parties in violation of the law.
How would you feel if an invoice for your medical services was sent by the processor, in an unsecured e-mail, to a friend of yours? This seems like an odd and inexplicable event. Still, the complaint for this class action alleges that Square, Inc. sent the private information of the plaintiff in this case to a friend of his, violating his privacy and failing to keep his payment and personal information confidential.
Recently, a number of data breaches have occurred at places that store personal medical information. This case brings suit against Laboratory Corporation of America and its parent company, Laboratory Corporation of America Holdings, both of which go by the name of LabCorp. However, the data breach did not involve LabCorp’s systems but those of its debt collector, which is not named as a defendant in this case.
Michigan’s Preservation of Personal Privacy Act (PPPA) prohibits the selling of magazine subscriber information to third parties. This complaint claims that TEN: Publishing Media, LLC nevertheless violated this law by selling the information of subscribers to Hot Rod magazine and other publications.
When a company selects and hires other companies to provide services, such as debt collection, is it responsible for the care they take with sensitive information? The complaint for this class action names Quest Diagnostics Incorporated as a defendant, as well as its vendors Optum360, LLC and American Medical Collection Agency, in a class action that concerns a data breach at American Medical.
This class action is one of several against First American Financial Corporation (FAFC) for a possible data exposure in its systems. Shockingly, the exposure was not caused by hackers or identity thieves; it was the company’s own poor data protection that made available some 885 million documents to anyone with access to a single file.