Home Depot Settles for $17.5M With States Over 2014 Data Breach
Home Depot settled with more than 40 states Tuesday for $17.5 million over a 2014 data breach that affected some 40 million customers. The settlement requires the company to “tighten its information security program to prevent future breaches,” said California…
Sign up for a free preview to unlock the rest of this article
Timely, relevant coverage of court proceedings and agency rulings involving tariffs, classification, valuation, origin and antidumping and countervailing duties. Each day, Trade Law Daily subscribers receive a daily headline email, in-depth PDF edition and access to all relevant documents via our trade law source document library and website.
Attorney General Xavier Becerra (D): It includes “a comprehensive information security program to protect the integrity and confidentiality of consumers’ personal information.” The company is glad to “put this matter behind us and continue to focus on serving our customers,” a spokesperson emailed, citing free identity protection services, free credit monitoring for customers and heavy investment since 2014. Pennsylvania AG Josh Shapiro (D) noted the agreement requires employing a “duly qualified Chief Information Security Officer” reporting to senior executives and directors. “The data security measures required by this settlement will help protect the personal information of Marylanders and other consumers throughout the country,” said Maryland AG Brian Frosh (D).