20 May 2018

Choicepoint to pay $15m for data breach

26 January 2006  |  8174 views  |  0 Eye with numbers_2

US credit data firm ChoicePoint will pay $15 million to settle charges that it failed to adequately protect customers' financial information following a data breach where a gang of criminals posing as businessmen managed to gain access to around 163,000 personal records.

The US Federal Trade Commission (FTC) says Choicepoint has agreed to pay $15m - which consists of $10 million in civil penalties and $5 million to compensate customers - to settle charges that its security and record-handling procedures violated consumers' privacy rights and federal laws.

The FTC says at least 800 cases of identity theft arose from the data breach, which occured in late 2004.

In a statement, FTC says ChoicePoint did not have reasonable procedures in place to screen prospective subscribers and turned over consumers' sensitive personal information to individuals who raised obvious 'red flags'.

The FTC alleges that ChoicePoint approved individuals who lied about their credentials and used commercial mail drops as business addresses. Applicants also reportedly used fax machines at public commercial locations to send multiple applications for purportedly separate companies.

The settlement requires ChoicePoint to implement new screening procedures for subscribers, to establish and maintain a comprehensive information security programme, and to obtain audits by an independent third-party security professional every other year until 2026.

Commenting on the settlement, Deborah Platt Majoras, chairperson of the FTC, says: "The message to ChoicePoint and others should be clear: Consumers' private data must be protected from thieves."

News of the settlement coincides with an earlier announcement from brokerage firm Ameriprise Financial that a laptop containing personal financial information on around 158,000 clients was stolen from an employee's vehicle.

Ameriprise, which was spun off from American Express last year, says it has mailed notification letters to approximately 158,000 clients whose names and internal account identification numbers were stored in a data file on the laptop computer.

The laptop - which was stolen in late December - also contained the names and social security numbers of an unspecified number of current and former financial advisers, who are also being notified of the theft.

Ameriprise says client accounts could not be accessed with the information stored on the file and it believes the theft was "a random criminal act".

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

Data security fears outrank terrorism, environmental concerns  - Visa

Data security fears outrank terrorism, environmental concerns - Visa

25 January 2006  |  7303 views  |  0 comments
People's Bank customer data tape goes missing

People's Bank customer data tape goes missing

12 January 2006  |  5446 views  |  0 comments
ABN Amro customer data tape lost in transit

ABN Amro customer data tape lost in transit

16 December 2005  |  16191 views  |  0 comments
US consumers want companies fined for security breaches

US consumers want companies fined for security breaches

08 July 2005  |  18343 views  |  0 comments
FDIC warns staff of data breach

FDIC warns staff of data breach

17 June 2005  |  7241 views  |  0 comments
Julius Baer confirms data theft

Julius Baer confirms data theft

16 June 2005  |  13616 views  |  0 comments
Citi customer data lost in transit

Citi customer data lost in transit

06 June 2005  |  10213 views  |  0 comments
US bank workers charged with selling customer data

US bank workers charged with selling customer data

17 May 2005  |  11015 views  |  0 comments | 1 tweets
Spitzer turns fire on ID theft as DSW data breach deepens

Spitzer turns fire on ID theft as DSW data breach deepens

19 April 2005  |  9970 views  |  0 comments
ChoicePoint customer data stolen by fraudsters

ChoicePoint customer data stolen by fraudsters

17 February 2005  |  6889 views  |  0 comments

Related company news

 

Related blogs

Create a blog about this story (membership required)
Visit www.vasco.com/news/mobile-first

Top topics

Most viewed Most shared
Ripple moves to build ecosystem around XRPRipple moves to build ecosystem around XRP
9524 views comments | 5 tweets | 7 linkedin
HSBC claims blockchain breakthrough for trade financeHSBC claims blockchain breakthrough for tr...
9201 views comments | 14 tweets | 16 linkedin
IT implications and the need to pivotIT implications and the need to pivot
9192 views comments | 2 linkedin
Irish bank caught in social media spying stormIrish bank caught in social media spying s...
8009 views comments | 25 tweets | 16 linkedin
Former JPMorgan blockchain leads unveil new startupFormer JPMorgan blockchain leads unveil ne...
7147 views comments | 2 tweets | 2 linkedin

Featured job

Competitive base + commission + benefits
UK or Germany

Find your next job