Skip to main content
Skip to navigation

Regulatory Enforcement

Fashion retailer Zoetop to pay $1.9M over data breach response

By Adrianne Appel2022-10-17T17:37:00

Zoetop, parent company to online clothing retailers SHEIN and ROMWE, agreed to pay $1.9 million as part of a settlement with the New York Attorney General’s Office for failing to properly protect customer information compromised during a 2018 data breach.

Zoetop did not properly protect customer data before or after the breach and “downplayed the extent” of the incident, New York Attorney General Letitia James said in an Oct. 12 press release.

Zoetop didn’t know where on its system it stored customer credit card information, James alleged. It allowed some credit card transaction information to be stored in plain text, she said, and used an algorithm to protect customer passwords that was known to be weak.

THIS IS MEMBERS-ONLY CONTENT

cw-membership

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

Survey
CW survey: Compliance teams struggling with AI implementation and trust issues

2026-01-26T21:37:00Z By Oscar Gonzalez

As companies push employees to use Artificial Intelligence tools to boost efficiency, many organizations are encountering challenges in implementing the technology. A new Compliance Week and konaAI survey found that the most common obstacles were practical and operational issues tied to existing compliance infrastructure.
Opinion
Teaching the business to speak risk

2026-01-26T16:46:00Z By Tavares M. Brewington CW guest columnist

Compliance professionals understand the value of risk assessments. We conduct them annually, map risks to controls, and present heat maps to the board. But there is a strategic opportunity that many compliance programs overlook: Teaching the business itself to think in the language of risk.
Article
CW survey: Compliance is adopting AI tools, but governance and controls lag

2026-01-24T00:09:00Z By Adrianne Appel

More than 83 percent of respondents to a new Compliance Week and konaAI survey report using artificial intelligence (AI) but only about 25 percent say their organizations have implemented a strong governance framework.

More from Regulatory Enforcement

Article
SFO head to step down as speculation grows over future of agency

2026-01-22T17:32:00Z By Neil Hodge

Nick Ephgrave, director of the U.K.’s main anti-corruption enforcement agency, the Serious Fraud Office, will retire at the end of March—about halfway through his appointed five-year term. Experts say he leaves the agency in a lot better position than he joined it in September 2023.
News Brief
FTC puts GM’s puts connected vehicle data practices under compliance spotlight

2026-01-16T20:32:00Z By Oscar Gonzalez

The U.S. Federal Trade Commission finalized its order against General Motors and its OnStar subsidiary over the improper usage of geolocation and driving behavior data of drivers.
Article
Kaiser plans pay $556M to settle Medicare upcoding allegations

2026-01-16T17:49:00Z By Adrianne Appel

Kaiser Health affiliates have agreed to pay more than $556 million to settle allegations originally made by whistleblowers that they ignored compliance department warnings and unlawfully reworked diagnoses for Medicare patients in order to receive higher payments from the federal government.