by Mike Masnick
Fri, Aug 24th 2007 2:07pm
old national bancorp
Over the last few years we've been hearing story after story after story about data leaks. These kinds of leaks didn't just start happening, but we're finally hearing about them because of new laws that require disclosure. One of the big problems is that there's very little risk to companies if they leak someone's data. They issue an apology, agree to pay for one year of credit monitoring and go back to storing data in easily leaked ways. Not surprisingly, many of the folks whose data was put at risk don't feel that's adequate and have tried to sue over the matter, but in a decision that mimics earlier decisions the 7th U.S. Circuit Court of Appeals has said that those suing Old National Bancorp have no right to sue, because nothing was actually done with the leaked data. In other words, since they weren't directly harmed, they don't have standing to sue. You can understand the legal reasoning here, but it still makes you question why simply leaking data shouldn't be considered negligence on the part of these companies, even if the data wasn't later used for criminal purposes?
If you liked this post, you may also be interested in...
- SalesForce Says It Doesn't Support CISA After Signing Letter That Suggested It Did
- Court Order Takes Another Stab At Stripping Away Ripoff Report's Section 230 Protections
- Appeals Court Says Topix Can't Be Held Responsible For Overdose Death Of Forum Member
- Kenya Pushes New Copyright Law Which Will Blame ISPs For Not Magically Stopping Piracy
- Washington State Court Confused By Section 230, Says Backpage May Be Liable For User Posts