Hacker News new | ask | show | jobs
by kevin_jacobs 5323 days ago
It's beyond time for some real privacy laws in this country, but I'm curious.. Can existing laws cover this? For example from what I understand, PCI compliance is required for storing credit card information. If CIQ is capturing this information along with all keystrokes, does the same law apply to them? And are they abiding by it?
2 comments
lftl 5323 days ago
PCI compliance isn't a law, but rather a contractual agreement as part of your merchant account, and/or transaction gateway. If CIQ isn't taking credit card payments, it has nothing to do with them.
link
kevin_jacobs 5323 days ago
Thanks, it seemed like a stretch anyway.
link
bdonlan 5323 days ago
But if your carrier offers an android app to do payments by credit card...
link
ajross 5323 days ago
Actually, as pointed out in the article much of this behavior is counter to the stated privacy policies of the carrier. That's a breach of contract, and I suspect an enterprising lawyer could turn this into a class action suit.
link
EvilLook 5323 days ago
Not any more thanks to SCOTUS.
link