DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Maryland Attorney General Settles with Mid Atlantic Processing

Posted on May 11, 2010 by Dissent

Attorney General Douglas F. Gansler announced that his Consumer Protection Division has entered into a settlement with MAP, LLC, a payment processing company formerly doing business as Mid Atlantic Processing, and Martin A. Taylor and Rony Natanzon, two officers of the company. The Division alleged that when Mid Atlantic Processing closed its Owings Mills office in May 2009, instead of properly disposing of business records containing private and sensitive consumer information, the business discarded those records in a dumpster. Seventy-seven boxes of business records that the Division alleged included consumers’ Social Security numbers, cancelled checks and other sensitive personal information were recovered by the police and provided to the Division. Under the Maryland Personal Information Protection Act, it is an unfair and deceptive trade practice for a business to destroy records containing customers’ personal information without taking reasonable steps to protect against unauthorized access to or use of the personal information.

“Mid Atlantic Processing did not take the required steps to safeguard the privacy of their customers’ personal information, making them vulnerable to identity theft,” said Attorney General Gansler. “When a business disposes of its client records that contain personal consumer information, it needs to shred the records or take other steps necessary to ensure that a consumer’s privacy is not compromised.”

Based on its investigation, the Division does not believe that any consumer’s personal information was compromised and the company and its officers denied any liability. However, the settlement requires the company and its officers to take reasonable steps to dispose of the 77 boxes of records in the Division’s possession, and to take similar steps in the future when disposing of records containing personal or sensitive consumer information. Such steps may include hiring a shredding company. The company and its officers also agreed to pay a $20,000 penalty.

Source: Attorney General Douglas F. Gansler

Category: Breach IncidentsExposureFinancial SectorOtherU.S.

Post navigation

← NM Medicaid members told about security breach (updated)
Judge won't accept pleas in Jackson Memorial Hospital ID theft case →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Trump Rewrites Cybersecurity Policy in Executive Order
  • AMI Group – Travel & Tours notice of ransomware attack
  • Resource: Insider Threat reports
  • Za: Cyber extortionist sentenced to eight years in jail
  • ICE takes steps to deport the Australian hacker known as “DR32”
  • Hearing on the Federal Government and AI
  • Nigerian National Sentenced To More Than Five Years For Hacking, Fraud, And Identity Theft Scheme
  • Data breach of patient info ends in firing of Miami hospital employee
  • Texas DOT investigates breach of crash report records, sends notification letters
  • PowerSchool hacker pleads guilty, released on personal recognizance bond

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Decision That Murdered Privacy
  • Hearing on the Federal Government and AI
  • California county accused of using drones to spy on residents
  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.