Posts Tagged ‘TJX’

4 Drivers For PCI DSS Compliance

Friday, September 28th, 2007

September 30 (why’d they pick a Sunday?) marks the compliance date for Level 1 organizations to be in compliance with PCI DSS.
Last week I had a nice conversation with Joe Lindstrom from Symantec about the deadline that will fall over this weekend.

(more…)

Tags:, , , , , , , , , ,
Posted in Information Security, Privacy and Compliance | No Comments »

Canadian Privacy Commissioners Release TJX Investigation Report

Tuesday, September 25th, 2007

Yesterday the Office of the Privacy Commissioner of Canada and the Office of the Information and Prrivacy Commissioner of Alberta released their “Report of an Investigation into the Security, Collection and Retention of Personal Information” concerning the TJX breach. The investigation was performed to determine if, and if so to what extent, the incident was a violation of Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) and/or the Personal Information Protection Act (PIPA).

(more…)

Tags:, , , , , , , , , , ,
Posted in Information Security, Laws & Regulations, Privacy and Compliance, Privacy Incidents | No Comments »

TJX Breach Sentence: Man Gets 5 Years in Prison and Must Pay $600,000 Restitution; Is It Enough?

Sunday, September 16th, 2007

On September 13, Florida Attorney General Bill McCollum announced Irving Escobar, the alleged leader of a Florida fraud ring that used stolen credit card information linked to the TJX, data breach was sentenced to five years in prison and must pay nearly $600,000 in restitution.

(more…)

Tags:, , , , , , , , ,
Posted in Information Security, Laws & Regulations, Privacy and Compliance, Privacy Incidents | No Comments »