Penalty Double Ups: PCI Intersects with State Privacy Laws

A lawsuit out of Massachusetts related to a breach of cardholder data by the Briar Group, LLC resulted in an $110,000 settlement by the company. This is some interesting news, as it shows that penalties for not protecting cardholder data can hit you from both the card brands and regional privacy lawsuits. Although the amount of the settlement is not extremely high, the other requirements coming out of the settlement can definitely push those costs up. Read more on SecureState's new blog site http://blog.securestate.com/post/2011/04/06/Penalty-Double-Ups-PCI-Intersects-with-State-Privacy-Laws.aspx