Dive Brief:
- Target has agreed to pay $10 million to settle a class-action lawsuit stemming from its massive 2013 data breach that compromised at least 40 million credit cards.
- The proposed settlement states that victims of the breach could receive up to $10,000 each in damages.
- The settlement also requires that Target appoints a chief information security officer, offer further security training to employees, and establish and maintain a process for monitoring security events and reacting to threatening events.
Dive Insight:
Target is making an effort to move on from its damning 2013 data breach and continue on with its ambitious restructuring plans. The retailer has made some big moves to attract customers recently—and perhaps recoup from this costly breach—including lowering its free-shipping minimum and extending its return window.
As customers' weariness of breaches lead some to curb their spending, the additional security measures attached to this settlement are mandatory to prevent another trust-eroding breach for Target.
