Retailer settles data breach with dozens of state AGs

The Neiman Marcus Group, LLC agreed to a settlement resolving a multistate investigation of a 2013 breach believed to have comprised over 370,000 customer credit card records.  The attorneys general of 43 states and the District of Columbia launched an investigation following the company's January 2014 disclosure of the breach.  Pursuant to the settlement, Neiman Marcus will pay $1.5 million and take measures to prevent similar breaches in the future, including:  maintaining network data collection and monitoring systems, updating and properly maintaining protective software, complying with industry standards for the protection of payment card information, engaging two expert payment card industry investigators, and using encryption to protect customer information.  The attorneys general have agreed not to pursue civil actions based on the breach.

Settlement agreement | Illinois AG press release | Georgia AG press release

You are currently offline.