- Topics
- Regions
- Events
- Webcasts
- Resources
- CW Exclusives
- Membership
“For tracking litigation, enforcement, and regulatory developments, Compliance Week
should be your prime source.”- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
Fashion retailer Zoetop to pay $1.9M over data breach response
By 
Adrianne Appel2022-10-17T17:37:00
Zoetop, parent company to online clothing retailers SHEIN and ROMWE, agreed to pay $1.9 million as part of a settlement with the New York Attorney General’s Office for failing to properly protect customer information compromised during a 2018 data breach.
Zoetop did not properly protect customer data before or after the breach and “downplayed the extent” of the incident, New York Attorney General Letitia James said in an Oct. 12 press release.
Zoetop didn’t know where on its system it stored customer credit card information, James alleged. It allowed some credit card transaction information to be stored in plain text, she said, and used an algorithm to protect customer passwords that was known to be weak.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefCFPB issues $2.5M penalty against Wise in last action of Chopra era
A fine by the Consumer Financial Protection Bureau (CFPB) against the U.S arm of London-based foreign exchange company Wise could be one of the agency’s final actions as a new regulatory regime reportedly froze rules and litigation amid calls for defunding.
-
News BriefFBI, Europol shut down hacking sites selling personal info, tools for cybercriminals
Two massive hacking websites–where criminals sold everything from stolen social security numbers to tools for cybercriminals to gain access to computers–have finally been shut down by an international law enforcement team, the Department of Justice announced.
-
OpinionFive reasons why I’m excited about CW’s Cyber Risk & Data Privacy Summit
Having worked for Compliance Week for three years, I’ve found it remarkable how compliance professionals can be so consistently upbeat about their plight. An often refrain in compliance circles is “be comfortable with being uncomfortable.” As difficult as the job can be, that clearly doesn’t mean it can’t be fun.
More from Regulatory Enforcement
-
News BriefFCA dings Infinox in first fine under U.K. capital market reforms of 2018
The U.K. Financial Conduct Authority issued a landmark fine against trading platform Infinox Capital for failing to report “high-risk” transactions, the first-ever enforcement under a 2018 law.
-
News BriefKuCoin latest crypto firm to pay hefty price for violating BSA with $297M penalty
The Sechelles-based owner of cryptocurrency exchange KuCoin has agreed to pay nearly $300 million in penalties–and cease doing business in the U.S. for two years–to settle charges that it failed to properly monitor potential criminal activity on its network.
-
News BriefDOJ indicts five in remote IT work scheme to circumvent North Korean sanctions
Five people, including two Americans, allegedly duped U.S. companies into hiring North Koreans for contract IT work, and funneled millions in U.S. dollars to the sanctioned regime, the Department of Justice said.