Massachusetts Attorney General Announces $7,500 Data Breach Settlement with Belmont Savings Bank
Time 1 Minute Read
Categories: Enforcement, Information Security, Security Breach, U.S. State Law

On July 29, 2011, Massachusetts Attorney General Martha Coakley announced a $7,500 settlement with Belmont Savings Bank following a May 2011 data breach involving the names, Social Security numbers and account numbers of more than 13,000 Massachusetts residents.  The bank has stated that it has no evidence of unauthorized access to or use of consumers’ personal information in connection with this breach.

According to Coakley’s press release, a Belmont Savings Bank employee violated the bank’s policies and procedures by failing to secure an unencrypted backup computer tape containing personal information.  Surveillance footage suggests that the tape most likely was incinerated by the bank’s waste disposal company after it was discarded inadvertently by an overnight cleaning crew.

In addition to paying a civil penalty of $7,500, Belmont Savings Bank must ensure proper transfer, inventory and storage of backup computer tapes containing personal information and must effectively train members of its workforce on the bank’s information security policies and procedures.

In March, we reported on Attorney General Coakley’s $110,000 data breach settlement with a Boston-area restaurant group.

Tags: Consumer Protection, Massachusetts, Penalty, Social Security Number, State Attorneys General
Print Email Twitter/X Linkedin Facebook

You May Also Be Interested In

Time 3 Minute Read
Connecticut AG Clarifies AI Compliance Obligations Under CTDPA

The Connecticut Attorney General recently issued a legal memorandum regarding the application of existing Connecticut laws, such as the Connecticut Data Privacy Act, to the use of artificial intelligence.

Continue Reading ›
Print Email Twitter/X Linkedin Facebook
Time 3 Minute Read
Oklahoma Enacts Comprehensive Consumer Privacy Law

On March 20, 2026, Oklahoma Governor Kevin Stitt signed SB 546 into law, enacting the Oklahoma Consumer Data Privacy Act, which will take effect on January 1, 2027.

Continue Reading ›
Print Email Twitter/X Linkedin Facebook
Time 2 Minute Read
Alabama Enacts App Store Accountability Act Requiring Age Verification

On February 5, 2026, Alabama Governor Kay Ivey signed Alabama House Bill 161, the App Store Accountability Act, establishing age categorization, age verification and parental consent requirements for mobile application marketplace providers operating in Alabama, effective January 2027.

Continue Reading ›
Print Email Twitter/X Linkedin Facebook
Time 2 Minute Read
CalPrivacy Reaches Settlement with Ford Motor Company Over CCPA Opt-Out Right Violations

On March 5, 2026, the California Privacy Protection Agency announced that the agency had reached a settlement with Ford Motor Company resolving an enforcement action against the company that alleged noncompliance with the California Consumer Privacy Act’s opt-out of sale/sharing rights.

Continue Reading ›
Print Email Twitter/X Linkedin Facebook

Search

Subscribe Arrow

Recent Posts

Categories

Tags

Archives

Jump to Page