Quote:
Originally Posted by StN
So, did the details exposed include the credit card numbers of those making donations? Because if so, they are probably now in breach of contract with their bank, and may have their merchant status revoked...
That's gotta hurt on the run up to a costly venture.
|
I don't believe actual credit card details were obtained, it appears the payment transactions were processed by a secure third-party (flo2) and the only data sent back (& stored un-securely) were the payment validation strings - but one does wonder what personal data was also stored within their CiviCRM system - this could lead to cases of
Identify Theft me thinks.
Anyone fancy being called Greg Presland ?
Better hope that David Garret didn't grab a copy of that dB.