Citigroup Finalizes Settlement of Customer Data Case

Citigroup has resolved a hang-up in its federal settlement of claims that it failed to protect the personal data of thousands of customers in bankruptcy proceedings.

The case involved court documents filed by Citi that were not sufficiently redacted. Those documents — which were uploaded to Pacer, the government's online court-record system — improperly displayed 150,000 clients' personal information, including Social Security numbers and birthdays.

Citi admitted to making the errors. In a settlement reached in March 2012 with the Justice Department and unsealed last July, the $1.4 trillion-asset bank agreed to redact customer information and notify affected clients. The bank also agreed to provide a year of free credit monitoring.

During a verification process mandated by the March 2012 settlement, Citi discovered an additional 50,000 improperly redacted filings, according to a press release Tuesday by the U.S. Trustee Program, the arm of the Justice Department that administers bankruptcy proceedings. It is unclear how many consumers those additional filings involved.

The bank prepared a plan to fix the newly discovered problem, and the Trustee's office ordered an independent auditor to review its redaction policies. In a report filed Monday with U.S. Bankruptcy Court for the Southern District of New York, the auditor concluded that Citi has satisfied the requirements of the settlement and subsequent corrective action plan, the release said.

For reprint and licensing requests for this article, click here.
Consumer banking Bank technology
MORE FROM AMERICAN BANKER