PORTLAND – A Portland woman filed a class-action lawsuit in a U.S. District Court Friday against Target in the wake of a recent data breach that may have affected 40 million credit and debit card accounts.
The plaintiff, Lisa Purcell, filed the suit, which could exceed $5 million in damages from the Minnesota-based retail giant.
The suit says Target “failed to implement and maintain reasonable security procedures and practices appropriate to the nature and scope of the information compromised in the data breach.”
News of the breach comes at the height of the holiday shopping season, making shoppers across the country worried about the safety of their personal information.
Background: Target reports 40M card accounts may be breached
On Friday, Target offered a one-time 10-percent discount to woo customers back. Friday’s lawsuit, however, says Targets actions, including how they notified customers, were too little, too late.
“Target finally released a statement concerning the data breach, but not one designed to notify affected customers directly. Rather, Target posted a statement on its corporate website,” the suit, signed and dated by Seattle-based attorney Jennifer Rust Murray, says.
By Saturday, however, Target had an “important notice” banner posted at the top of its online shopping site addressing the breach.
Also on Saturday, Chase bank announced 2 million affected debit card members would be limited to a maximum of $100 cash withdrawals and $300 in purchases per day.
"Target's first priority is preserving the trust of our guests and we have moved swiftly to address this issue, so guests can shop with confidence. We regret any inconvenience this may cause," Chairman, President and CEO Gregg Steinhafel said in a statement Thursday.