Enterprise Applications - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Enterprise Applications


Bank Group Sues TJX over Data Breach



 By: Evan Schuman
2007-04-25
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Enterprise Applications story.


Rate This Article:
Poor Best
In a class-action lawsuit, the Massachusetts Bankers Association accuses the retailer of "negligent misrepresentation."

In another in a lengthy line of lawsuits against The TJX Companies involving the massive data breach that the company announced in January, the Massachusetts Bankers Association said on April 24 that it will sue the retail chain, accusing it of "negligent misrepresentation." The MBA claims that TJXs assertion that it had been "safeguarding and disposing of cardholder data" was false at the time it was made.

MBA CEO Daniel Forte said his association hopes to make this a much broader issue than one retailer and one very large data breach.

"If were successful against TJX, the nations major retailers will finally wake up to the fact that not protecting consumer data is an unfair trade practice and that investment in data management systems to protect consumers and shield consumers against fraud and identity theft is required," Forte said in a statement.

Resource Library:
The Massachusetts banking group is being joined in the lawsuit by the Connecticut Bankers Association and the Maine Association of Community Banks. Those associations, according to the MBA, represent nearly 300 banks. A handful of individual banks have also joined as co-plaintiffs. The MBA also said that an unspecified number of California banks may also join.

Its typical for plaintiffs in a class-action lawsuit to be reluctant to discuss how much money theyre seeking because it will be greatly influenced by what is learned during the legal discovery process. But Forte did set a floor of what his association is seeking: "Suffice to say," Forte said, "we will be seeking to recover damages in the tens of millions of dollars."

This lawsuit is different than most of the consumer class-action lawsuits against TJX because the damages incurred by the member banks is more concrete, if not as dramatic. For consumers, credit card zero-liability agreements are generally minimizing or eliminating financial losses, leaving the more nebulous time and aggravation costs of dealing with possible identify theft.

With the banks, though, the financial losses are able to be better documented. "Banks all across the nation re-issued debit cards as a result of the TJX data breach. Preliminary estimates of the costs vary from institution to institution, up to $25 dollars per card," MBA officials said in a statement. "This alone would run into many millions of dollars for banks throughout the country. Moreover, when fraud occurs, banks generally cover the entire fraud, replacing money in customer accounts to protect their customers."

Lindsey Pinkham, senior vice president of the Connecticut Bankers Association, pointed out that this retail data breach is going in a very unacceptable direction. "Retail data breaches are getting larger and more frequent, and we cannot continue to absorb the costs," Pinkham said.

Click here to find out why encryption didnt save TJX.

Forte also argued that Massachusetts laws will be friendlier to a data breach claim than some other jurisdictions where these lawsuits have been filed.

"There are significant differences between this case and prior data breach lawsuits such as the BJ Wholesale Club cases in Pennsylvania," he said in the statement. "We think we have an advantage trying the case here in Massachusetts. When the BJs cases were argued in Pennsylvania, the plaintiffs did not include an unfair trade practices statutory claim, and Massachusetts law allows these claims.

"In fact, an unfair trade practice claim was asserted by the FTC, which imposed substantial conditions and requirements on their operations. In addition, we will seek to prove that TJX is responsible for negligent misrepresentation. Among other things, the company represented that it was safeguarding and disposing of cardholder data. These representations were not true and showed a lack of reasonable care and were both unfair trade practices and negligent misrepresentation under Massachusetts law. In one of the ongoing BJs cases, unlike in Pennsylvania, a motion to dismiss brought by BJs was denied in Massachusetts and the case is still proceeding here."

Check out eWEEK.coms for the latest news, views and analysis on technologys impact on retail.



  Reader Comments: Bank Group Sues TJX over Data Breach
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Enterprise Applications Articles          >>> More By Evan Schuman
 


x}is㶲*Qg5E푦dKeXq&TI)$7~7-e3[ݍFλ$9aqE1>yƤ.w߽ !dߚF0TE[ Ϡ^-ȈZ#}wu9k;;#|69߽w A:|@vD)5'Ӡߙ QmW6g2z9ޭ3 fE63FI {r!&֥qȏͽ#c! [t;v oT| pf"q{f_R؀HQIUb&{Bq<5;^6W;FV~L {.Y^ZZpj9:N`QFdn aZ.9rx&5 Go,gu'9"QcO$աUqLJVtXF>D>8z vGx09ryj5jfL {n_%z0swx6ܳL]b#6fJmBO|l ݟRAGc"Sk9ˁ,Fp氢,sti CM-*R?ߋ*[6[2KGֺKL)(y"Gq7Z} m)9x] >LE}|uOuvN֯xvy//0wFD_*QI- Y|/LZ@GS::_MB^ $> xZ^  jɥz8JR Ә])1N,#[Gdji[^[ǧG 7b٘XB ji@e$XYoW%Uٽꑓ%i>[=$/#t6+?f'_W[Ulhxi5HYz>5409;RZڗ{$PY$Y*r$?;g۾Bdu#$7R(y#0ri4( 8X@.@ש#07ۯ脺f-Mn "df4 VM-w a6Z@LuH)=?&qϚb.L2o2|)=m̗U.d`(AK/g 5t*軤(If0A0wlB0543CLQÜjCݶ!9N: N+/6Eͥ~jhj>'ݨä78=ss aKUԇQ߭}PCA :]TR}b;>t9 PhPP<sxװܘ@[3衟%]ѽ+:?a#0/ Z-{ BeV~}̢PsO!>3gsDݴiǀxԘ(w.aHd˕F ] cRRP$C'I#r*Bl`@n!{ [AX'B/VKŤ\*u"\JM'8Μ3PKRx%,S,ЂW-KᗄPQf9e28Vm&Dr"eL/G7Mቚ&Z1oY,*_§C&csdGn]^yel`a PCb;.M: ?[ 7!n;A높{40fXVZj`Ja DzdufB7g Ʃ9 \ W?fx,qٛ:=I`(^\IIbЙn!@ )z٦ll.3-ʭD֒e]{_Fo6ҞviZZ @-ei --ًVX4ujQWt0:T emځbZG(J\bP'^&äkQ?M cc,zsŶU OßB-ְjISJj|5YB^e  4 ıLBYaX88l]x}굍vV0ܓ?@&R*ö13ghjGǙXT&Ał4q ֚0̈́Ouo4'8o+<|CXM~"=ilA>\PXt> r+b$T:$f_â:lx"BO{C{nc>TZej<z,RT j%Ɔ06*ERfU`sϏyO="1tc81о<_w~~6Fa Y8׃~T}f6݂ r39h>> ;22@3&s!au5 :=R)hᮣpR " Qpxk)u;qfz9N#q\3@$4StC HQaw-4 )aKPs hj_V U#4T# a5)XMQiRiR9SӲ˧SLJ@(A@6u4|X\.(``#>ߏZ0f*Ш)lTcm/ kRٯTš5^4%mpH1)dzD4@+-q8h tBs}r@d%Raݜ5"vzڀVIJhQ6_TM/Ш4> s7}&-ov3ϼc˙yrN?RWo鸙 @Ĩ򨁁yUM+%Fۂf03Q9ƒϣ pz.{ sPX3~p1\AX#<>GsWnl*r6?K=[L4@v1MP]L̙ udh9 2<(_J`Uǐ\n{=NR-20\?z*%\.Yi =cx89e}̭57/UUVSF;:9&ߐ@ZO( ]k8spIZ'뿌2KɭPSV<Z6J\)oA~f^T('KȊ@G܉?V!VɥZV?&IG|)ATDUPU(V $zVp8,hxў2G+++e-2۹a n΅9 4Ky+[Y&)Ӕ7ϰ:3Rbk(^h#e[溳*s]< Si;ܜ9ЍzHΝrQӊ 5`JR~#0阆cĽ) rN-푑GdQ.|aR)W@8L3AJ j ;!q]6x0!4<~re%[ ir2=kZgapvO+ʬ7A48'ov;vvwZU}{" }MXޟUv٭vFdw~ݕDw;]R9I/4:/xǀsu_t{~{~@DXyiD߫%n珥%4}l|@Jv-?\v?7v&Ӹoٷ(!K NCbw} ɾ3zZ^4a Z'ЃJ@ɁU~#tKݳ%wH-)^{!o=rH$Bj? 'dн s|j\77bL`jX&IyyD#SW5CsD/8 m̀@ c^6[XqzwӱBZMUc | Ay4:\;Z_aߪ,$"0.Wtvȝ}E9{B*l._+i9HB `E/ԩ #ADrIGzRFdf{Dw G0_/[L㷜oWȘID_q-5kNz4&s\1[5nl&ݳ=B2^&V8=h19I/Cq𽇻"Ts(LMàvD)gTxPxi'sfx!u- q%՝b§ oBٸEO m}[̘pAS2%I"ϔ m$IjSfkC@$ğ_KIv(+H+dAzJӚmfygj;n+W#; .ViH_8_`跏gB HY)o8-yb}@N^KJpUKユuVn4:=Z]-{? #r@N~A=rW$v|ݝf0iۣå=0i8?PΡV-w)k9,9Pf8#vڕg_Dr!N{H,Ɖ3M!.9Iߺ$/S+=F=g7omT2#|>d6a-#g$rx-YnR˪jee_OVL ^_vl? =}La3E/<47aw돫5yϜ'T)k4&ƣe5v}/XHӡ>a1ϻDErWBz_awv Y01eIo` H)iҙ:gGTBwd'ob`I ][+@2$c[ȣFNT=}I,Nw0_B dAWAg1Wu :RYn!hp㔗.똈D/bE?ڑsUÒYf j1~ԏ։vR'jC^kyl{; '/sX\hW7詁=/30> ؤnQ/yמ A!9QVJЇV% D\z@v;ja(a@*#Oҟ&x]/P(EY@[NceCɄv0RzY:% t R/t/$+ԗYBoA:U.f{aB@fJÁ,jDп4jJ&~ݡhMJ-Wy%6y//LǓI|>_R]I¸{ YMӀ8iU ,lU=z}z!xҀ#fd|MJmI"Mɢ\dъT5!/c*aL<ΠV zG*qMʌëgnE UIQ%ucQ|ibcZ.tf4$PBVBCPpxcX#xhxIXfXzH yBꏪXR)%}|yI]d =z{t0RYIa ARhUk󁧅oZr[FR~vRi:R/`!h).q ՄPJ! 0% xebnK2T7%Ks}@X6̗rUꘖ B#tS>EXvU/o#&xo]e[fV,Pc,ZZ*O]oooo{é_V+O795KR/3g.SX>GW(ЙCvSiHg7,>+>i7 OjXԘP,F@tAc17.!> eS&ر/ E9r:|* (X? Ll_xmc`rIRufA#0c<ôht;$#0Is/|%s"joHjfmFe]e(- p @1L55f^ڕLgF'S![`Ѕ-a9Z ^ T\x?# ˟S!&t;oy ?CFHmHWs<&W|ᳳ> \>I=r\t?ig]=1GղnstdɓUK-%gŀHR`˺VclR_-R"Q簰W/!l6,{ 1We$IxMf5_4>zѠi/o^i~I!KxhW%^%T DIOgY|7,Z Ugf3y=+Jq8ɓ1<+ˁBK-P߮׶Ff31yXw''NM _m`|aer[J̟|_ < 6u}R/o\!<,QCI<xt>aF^FT_Mxd[%}8%lbuN!*"QK0~7)6Fi g]glڸ'MvV{4RJMܰ7VTK_/ye<6su\ݲ^Pjetp8\ЈhzmM0QW=6[7oPHvjmm)奙H=mZA˽=V4D mX[`cXZgE!jq[Ow]@VD[_[ˮ#{tХ sorY5VBˬe#1}ilD=e ʬkb$Q3 ƹ~h3\",kV;3așDK5z !|p k;]ݽ]87|MqLYu~{3Vf/K{~i qu042/`ò˿$nz`'ݴs-hMLm 0ŨCǀB_ytP؁#χV1߲yHQ7){ZuOlmwBW+H, X{ka3iH :[<|.?DsL:^ۏo2DNY<#!kX51 ;'&wpR] O(яTeQO1+'zsJKN(+aZ|sWF%5{H JH 4AX^V2"]n~4cu\]QR[,ݭT-/&E9"'"KIH*]^|c!~8,2dБ0 /(/͛I~o[KC#\m.95͂E3 tMs95|\V(j~zr_ZRӂ,w)do=;5֘0h)B EٚAKu7#*R!?|Zca:Ok6J=!Ƀ`58?+Sin&|-'ֻh zR[o^;G'ܬTMDA n_Gf܀<1RG`_݉x*å#@R˰0-p |ri;.RU1snp"̦vB ?ZA)r c:}yjUS*ZZQ +*`ʴa'u\j ot _q)hydZ{#qȋF^*iByK{0/Va *zeby}K[TQ`m2**sd \z9~Z<덦kt7{XЕ>?EvC @Hu#nA',vl6COf;VdRjs>ѽ3BsX\GX\sjO\}{agI xfZ-j%FG0 ,2;+VzONu[M}_r0ţh@$=+X|G,%_[%JFVޏG6وb[xIuQrAu15rǛh%xi)ZwB""Q/@@L%F H 47#LCP |Bo-C7OxR(iUea(Z@kb>=ҁpi;q~ܒ:i0 n}D'߄Ϯ> c Brth&7e\S[W[8G@`m¬܏@BS ؛a̤7f?< ^N9ǝIRG $y/'-bWd"$@>_޺j>"=4gu;kZxX2C^(M$=¼0r2؈~OGc=̃kH".*+ra 3+:d/:кd>rK |9[CG)WTbʑf,zTk]}<) { Q> ?1! @6L-;aIAX#hbG#cMNZf? li /5"tcr{֣) P鄗05g+bvp]oum_06Faŷ^(l8*~vxc||>O~sDnE, D "}A=Aa~Lµ!XRJs% 9[laf4:,<(SG]ĝ9]30NT'FgCj| `tܳovAN:*' P=X:Ϝ s)aR;^Q@<Plt4'/ rths?ݩ9eď/0 2K1c~EWoVRUSJwe &zykwy |ofY3{8VBOr%-ruVнA-'i92fw4tܽA%b=fڟ4\qqqt/I\Zw|پ跻uֽS֊_n՝nqIuq>'&GoT/晾xQ(;OzYi1=eNq*gE B"r4,xgY^ϊ>*M讏|?{Sf}Y QB/a01Nch6/[ԆSyċ#xYb12;Zt>r:h) ѻZQc p!>EZ}=oJk%ꋲ3 dz1#%#/7R]f#7VF1?dCF?|OO۹i{}~пvF>>ȇ3e/Y|XꝌ;N|o'O'?'cN}v>;.2_dԿ̠11>_??C?}}ʠϐ9+9c|3wWY@W{_ewAɵN2!odY7NOoT8G\(^JeY+OY:?߇ yVV ?^`]fkx.rf e{%;k?/Bh\jzr+*g޲fiUv+iAư[x.6Q^/TZ+ޤbua.a 3l>VLY[lOмz' Jܓs+Z`~H\]ds+e|UfE+tVO1&ϋR<=sxwY몮,8“m(!9q}»2Swsف^]w[qЙqq֢@)+zyXkhWr'<5v>XB@i]7-hgdAMedz37P !FW@jd2 yr;)4螁q+4\` ;ǙeHP*5VZ*;Żٗ`G0m@ jJ]N-~X,g/g2l]FJ ZCO0CX.Fฅ} l5zG PxmDz+cAV7/#^"Tv:Ac(<)d9+әu4^ۘLڸAa%Mvn[`Z;o=2d?Mqkq%D4o&O)XGnP+7ӦRFBMW&f" >oQ^ܵ N* Xm0Y)F޵0N,:?ÎtШ=_]sń#2O 5U"zOBP'Gê,9<23KHtN,ꩋcV|ܡ= CϾty9"ɘ4uk@.޹} teWDۀi=[h^:a5q[)".,WG8fAL q~L/jhhd1ty'Wx-3b=(ul71-dt{??aL{~Ǣrw]@p]5,}PBD`gTfg16AXR:%I 5oԳgRgY;/0v!$k0W?3@=$N>7![31Q1ւ_6gзc/;MZKV7۲"&\`)HpK3GhR͠_<$nD܅g ۠(,%* >nX">mv>Lcc'LX7TeuLc0ŴBChJ -(O?7.Gknx5E`m4`gh|h# nԱw 7g}7ִ.H d|_ODx®~ axi%d{dU(IU`}^?hFq:h I ):- `yMez@iV9H\*,8lf 4vkf4[ƝMQ|r$#Ŗi3x|@ = oF8`y%K@4zVxx ut+y!1v (ɟzTq޶7(GѺi#Q`[:*n۲uyTU=e[<tc bۙBYa1 g'[yүy~{C#>Fksxf # i'ۂv<|gn`)nԈc-hsx&Sǂ)q0ƕ"D0?&ˢct9zbPr뙰*0O_k92lv.2X(! Ŵ"&D0;'%t0M݄rk"*pkq-ZՙH p<;gO^XpT/$ ow2b%9==I9~q _YBKX]嬵&N3ʓy_:itg_K%L=C= ͳa\'cF\O}j8>u/c35=jptޔ‚=EMB^6[i B":+wh6񝞝?`*X8Mlw\㍿cP1TߛiTUN$7Eѓem.d_)V gvB[W셫Qbmئd Ui29J}) q˅4>f[96aNw6~ȄM#^ve}0Y1+