Egghead Customer? Your Data Goes To Fry's

An anonymous reader says: "I bought some things from onsale.com, which then became egghead.com. Somewhere in that time, their credit card database got jacked, for which they sent me a nice e-mail saying everything was ok. Now I've got a mail that I don't like at all, with the subject 'IMPORTANT MESSAGE REGARDING THE TRANSFER OF YOUR CUSTOMER INFORMATION.' Well. that's pretty much it. egghead.com info will go to Fry's Electronics, unless the customer explicitly requests that it not. How often does it happen that when a company goes under that they just sell their customer info and just not tell anyone?" Here are links to the Egghead info page and privacy and security policy.

No way things can change...

[Nawak]

...since privacy helps terrorists.

Re:This is why I don't buy stuff on-line.

[hattig]

The sad thing is, companies store CC information openly on servers (whether in a DB or in a file). They claim a secure site, but they are lying (misleading the consumer - an illegal activity in most countries I believe) because the whole process (customer to delivery) is not secure, only the customer to website part is.

Sadly, even simple, 10 minute code jobs like PGP encrypting the customer's payment details before storing them on the server are beyond most online sites. And that is very sad. My company PGP encrypts all online payments before saving them on the server, and they are only decrypted on a computer that is not connected to the Internet (even though this is not as easy as getting an email with all the details in plain text (which other sites do after the https part of the deal anyway!)). After processing, the details are deleted.

SPAM has got much worse this year. Last year I got very few, this year I also get 10 or so a day on my personal email account, despite always having it spam-proofed one way or another. Action needs to be taken against spammers.

Anyway, the companies T&Cs will give them the right to sell on the information you provide if they so desire.