Skip to main content
Skip to navigation

Regulatory Enforcement

Fashion retailer Zoetop to pay $1.9M over data breach response

By Adrianne Appel2022-10-17T17:37:00

Zoetop, parent company to online clothing retailers SHEIN and ROMWE, agreed to pay $1.9 million as part of a settlement with the New York Attorney General’s Office for failing to properly protect customer information compromised during a 2018 data breach.

Zoetop did not properly protect customer data before or after the breach and “downplayed the extent” of the incident, New York Attorney General Letitia James said in an Oct. 12 press release.

Zoetop didn’t know where on its system it stored customer credit card information, James alleged. It allowed some credit card transaction information to be stored in plain text, she said, and used an algorithm to protect customer passwords that was known to be weak.

THIS IS MEMBERS-ONLY CONTENT

cw-membership

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

Premium
Top Ethics and Compliance Triumphs of 2025

2025-12-31T12:00:00Z By Aaron Nicodemus and Oscar Gonzalez

This year’s compliance triumphs were all born out of compliance fails. In some cases, it was a regulator finding fault and demanding change. In others, acquiring companies noticed something a little fishy in their new acquisition. What formed a compliance triumph in every case wasn’t the mistake; it was the ...
Article
What 2025’s AI mishaps should teach compliance in 2026

2025-12-29T12:00:00Z By Ruth Prickett

If 2025 was the year generative AI took off in organizations in every sector, it was also the year we saw increasing examples of the risks of AI mishaps.
Opinion
Building resilient teams in cyberdefense

2025-12-29T12:00:00Z By Timothy Miller, CW guest columnist

The stress on cyberdefense teams can be accurately described as a form of chronic occupational trauma stemming from several unique pressures. But there are ways to build a culture that combats these pressures.

More from Regulatory Enforcement

Article
Tariff evasion enforcement: The new FCPA

2025-12-24T16:46:00Z By Jaclyn Jaeger

Companies that import goods into the United States will face heightened enforcement scrutiny for attempted acts of customs fraud, including tariff evasion, under the Trump administration. Thus, chief compliance officers and in-house counsel face a new kind of pressure to ensure they are mitigating risk in this area.
Article
Former COO of plastics importer faces up to five years for customs falsifications

2025-12-24T13:54:00Z By Adrianne Appel

The chief operating officer of a plastic resin importer has pleaded guilty to intentionally falsifying documents to avoid paying tariffs on goods from China, the Department of Justice (DOJ) announced.
Article
Cybercrime against banks and account holders takes hit from FBI

2025-12-23T21:50:00Z By Adrianne Appel

Federal investigators have announced progress in dismantling an online criminal operation that steals bank account information by mimicking legitimate bank websites.