Heartland Reaches $41 Million Settlement With MasterCard Over Data Breach

    Date24 May 2010
    Posted ByAnthony Pell
    In a legal settlement over its 2008 security breach, Heartland Payment Systems has agreed to pay up to $41.4 million to MasterCard Worldwide and its card issuers to repay operational costs and fraud losses attributed to the breach. Under the agreement, Heartland will fund up to $41.4 million of "alternative recovery offers" to be made to eligible MasterCard card issuers to settle their claims for losses incurred as a result of the breach. Issuers accepting the offers must agree to certain terms and conditions.

    The settlement comes nearly six months after Heartland reached a $60 million breach settlement with Visa.

    "We feel that this settlement represents an appropriate and fair resolution for our issuing financial institution customers and will enable them to avoid uncertainties and delays associated with potentially protracted litigation," said Wendy Murdock, chief franchise officer for MasterCard Worldwide, in a statement. "The agreement underscores MasterCard's continuing efforts to maintain the integrity of payment card industry standards and mitigate the impact of account data compromise events."

    Under the terms of the settlement, MasterCard card issuers that filed timely claims for reimbursement of operational expenses or to recover fraud losses on certain accounts processed by Heartland during 2008 will be eligible to receive a specified dollar payment with receipt expected during the third calendar quarter of 2010, if they choose to accept their offers.

    The settlement is contingent upon, among other things, MasterCard card issuing financial institutions representing at least 80 percent of the claimed-on MasterCard accounts having accepted their offers by June 25.

    Issuers that choose to accept their offers must agree to forgo any other remedies or recoveries they might otherwise be able to obtain from Heartland and its acquirers by reason of the Heartland data security breach, and to release MasterCard, Heartland, and Heartland's acquirers from all legal and financial liability associated with the breach.

    You are not authorised to post comments.

    LinuxSecurity Poll

    Has your email account ever been pwned in a data breach?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.