A Collaboration with the University of Pittsburgh

Massachusetts judges rules state can proceed with data breach lawsuit against Equifax

[JURIST] The Suffolk County Superior Court in Massachusetts released a decision [text, PDF] Wednesday, denying Equifax a motion to dismiss and allowing the commonwealth to move forward in its lawsuit against Equifax for its data breach [NYT report].

Equifax sought to dismiss the claims against them under Rule 12(b)(6) [rule text] of the Massachusetts Rules of Civil Procedure for failure to state a claim upon which relief can be granted.

Massachusetts alleged that Equifax did not take the proper steps to guard personal information and did not promptly inform consumers about the data breach or take appropriate steps to remedy that breach. The court discussed that the complaint filed by the state had adequately alleged violations of the Massachusetts Data Breach Notification Law (General Laws Chapter 93H), The Massachusetts Data Security Regulations (201 CMR 17.00), and the Massachusetts Consumer Protection Act (General Laws Chapter 93A)[legislation texts].

Cybersecurity has been a growing concern of data breaches with the Uber breach in March, the SEC issuing a statement in February warning public companies to disclose breaches to their customers, and the data breach of the Office of Personal Management[JURIST reports] in the fall to name a few.

About Paper Chase

Paper Chase is JURIST's real-time legal news service, powered by a team of 30 law student reporters and editors led by law professor Bernard Hibbitts at the University of Pittsburgh School of Law. As an educational service, Paper Chase is dedicated to presenting important legal news and materials rapidly, objectively and intelligibly in an accessible format.

© Copyright JURIST Legal News and Research Services, Inc., 2013.