by Mike Masnick
Tue, Sep 28th 2010 11:31am
A bit more fallout from the ACS:Law email leak. In the comments on our last post, cc pointed out that one of the discoveries in the leaks is that ACS:Law did not properly protect the private information of those who paid up after receiving a pre-settlement threat letter. In fact, the email leaks apparently revealed over 10k names, addresses and credit card details in some cases. Because of this, Privacy International is planning to file a lawsuit against the company, for not living up to EU privacy regulations on such information. PI is claiming that the company violated data protection laws by allowing sensitive information to be stored on a public-facing server, and not taking the "appropriate technical and organisational measures" to protect the data.
If you liked this post, you may also be interested in...
- Local Lawyers Challenge New Kuwaiti Law Creating Mandatory DNA Database Of All Citizens And Visitors
- Techdirt Podcast Episode 92: Passwords Suck; What's Next?
- EFF White Paper Hopes To Educate Cops On The Difference Between An IP Address And A Person
- UK Court Wants To Limit Copyright Trolling... But Not Enough To Stop It Entirely
- ACS:Law Boss Andrew Crossley Breached Solicitor's Code, 'Brought The Legal Profession Into Disrepute'