Citigroup's Japanese credit card unit said personal information for more than 92,000 of its customers was illegally sold to a third party. The information exposed included the names, account numbers addresses, phone numbers birthdates, and sex of 92,408 credit card holders, Citi Cards Japan warned in an advisory (PDF) issued …
I know there are only two choices, but I'm known equally as male and female to organisations that want to know my sex. It's about time there were either three choices when you join:
none of your business
or, better, that they stop asking! When will we get equality?
So Citi will be fined hundreds of millions of dollars and fire a whole bunch of senior management? No? Ah, very well, carry on then.
Clearly losing a bunch of details the first time round did nothing to improve their security. Blaming it on a third party is a cop-out. In the new UK anti-corruption laws, a company is liable if a third party acting on it's behalf is paying bribes. It's up to the company to make sue that it's partners are also in compliance.
Should be the same with data protection. If I entrust my customers' data to a third party, it's my responsibility to ensure that data is safe. If I'm not happy with their protections, I don't pass any data on to them.
I was with Citigroup, so I could leave...
- Product round-up Ten excellent FREE PC apps to brighten your Windows
- Chromecast video on UK, Euro TVs hertz so badly it makes us judder – but Google 'won't fix'
- Analysis Pity the poor Windows developer: The tools for desktop development are in disarray
- Analysis BlackBerry's turnaround relies on a secret weapon: Its own network
- Hire and hold IT staff in 2015: The Reg's how-to guide