We really need legislation in the US to regulate the use of data... something like the GDPR with enforcement for people who are careless with their customers.
As well as strongly regulating sales of data/data brokers, of course.
Honestly, something as simple as statutory damages would be enough. Probably makes the most sense since it's going to be difficult to shown whose database was used for identify theft.
You want to compile a database on your 1 million customers? Go ahead but you're going to pay $X * 1 million if you don't protect it.
lesuorac|1 year ago
You want to compile a database on your 1 million customers? Go ahead but you're going to pay $X * 1 million if you don't protect it.