Slashdot Mirror

← Back to Stories (view on slashdot.org)

Court Says California Stores Can't Ask Customers For ZIP Codes

Posted by timothy on from the mine-was-just-a-bunch-of-sixes-anyhow dept.

Hugh Pickens writes writes "CNN reports that the California Supreme Court has ruled that retailers in California don't have the right to ask customers for their ZIP code while completing credit card transactions, saying that doing so violates a cardholders' right to protect his or her personal information, pointing to a 1971 state law that prohibits businesses from asking credit cardholders for 'personal identification information' that could be used to track them down. 'The legislature intended to provide robust consumer protections by prohibiting retailers from soliciting and recording information about the cardholder that is unnecessary to the credit card transaction,' the decision states. 'We hold that personal identification information ... includes the cardholder's ZIP code.' In her lawsuit, Jessica Pineda claimed that a cashier at Williams-Sonoma had asked for her ZIP code during a purchase — information that was recorded and later used, along with her name, to figure out her home address by tapping a database that the company uses to market products to customers and sell its compiled consumer information to other businesses."

2 of 461 comments (clear)

  1. Re:Only applies to 'unnecessary' personal informat by Anonymous Coward · · Score: 5, Informative

    The law provides for the collection of personally identifying information that's necessary for the transaction. Online, this includes the billing zip code. This ruling apples to card-present retail transactions. FYI. Here's the entire decision: http://www.courtinfo.ca.gov/opinions/documents/S178241.PDF

    Except the billing zip code happens to be a very important (though not the only) piece of AVS (Address Verification System), which is used to combat fraud. In a nutshell, the merchant submits the customer's address along with their card info, and (depending on the merchant's arrangement) the credit card processor checks to make sure certain parts of that address match what's associated with that card number. Zip code happens to be one of the most reliable.

  2. Re:Does that really solve the problem? by RoFLKOPTr · · Score: 5, Informative

    Do they? Why should they? The transaction is between the merchant and the credit card company.

    You are exactly wrong. If a fraudulent purchase is made with a credit card and it is recognized and reversed, it is the merchant that takes the hit. Not the bank, not the customer, the merchant. They charge back the merchant the full amount of the purchase and then it is primarily up to the merchant to identify the suspect and prosecute the theft.