A new law in Washington will let banks recover certain costs and damages from retailers and credit card processors that suffer data breaches after failing to comply with Payment Card Industry (PCI) standards, reports esecurityplanet.com. Washington is the third state to enact such a law; Nevada and Minnesota impose similar requirements. The law will "put more pressure on companies to ratchet up their PCI compliance schedule," said Jim Halpert, a partner at DLA Piper in Washington, DC, on yesterday's Privacy Tracker monthly call. (Privacy Tracker subscribers may access the archived call here.)
If you want to comment on this post, you need to login.