The largest home appliance company in the US, the Home Depot Inc., will pay $ 17,5 million to resolve a data breach which took place in 2014, in which the hackers had access to data payment cards belonging to 40 million customers, from different states.
The settlement, associated with the 46 states of USA and Washington, relates to the breach that occurred between April 10, 2014 and September 13, 2014, affecting customers who used control terminals at the company's stores in the US and Canada.
The Atlanta-based company previously said at least 52 million people had been exposed to the breach, leaking their email addresses, making up a large portion of affected customers other than those whose payment card data had been compromised. .
Home Depot, however, has not accepted responsibility for accepting the settlement, which requires hiring an information security chief and upgrading procedures. security and staff training. The survey was conducted from the states of Connecticut, Illinois and Texas.
Companies that collect sensitive personal information from customers "have an obligation to protect this information from illegal use or leakage," said the Connecticut Attorney General. William Tong. "Home Depot failed to take these precautions."
In a statement, Home Depot said security was the company's top priority and that since 2014 "it has invested heavily to further secure its systems." Home Depot had previously recorded 198 million expenses for infringement and had resolved issues that had arisen with customers, card issuers and banks claiming to have suffered losses.