Date Released: FTC-PR-240110-2

January 10, 2024


FTC-PR-240110-2 – FTC Announces Claims Process for Consumers Affected by CafePress’s Data Security Failures


The Federal Trade Commission is launching a claims process for consumers who had their Social Security numbers exposed in a data breach involving online merchandise platform CafePress.

The claims process stems from a settlement the FTC announced in March 2022 with CafePress over allegations the company failed to implement reasonable security measures to protect sensitive information stored on its network, including plain text Social Security numbers, inadequately encrypted passwords, and answers to password reset questions. The company’s data security failures led to a data breach that exposed this sensitive data including Social Security numbers.

Under the settlement with the FTC, Residual Pumpkin Entity, LLC, the former owner of CafePress, and PlanetArt, LLC, which bought CafePress in 2020, were required to implement comprehensive information security programs to address the security problems identified in the complaint. Residual Pumpkin also agreed to pay $500,000, which the FTC is using to compensate victims impacted by the data breach.

Source URL :


[Date Accessed: 3/3/2024]

Please Contact  the administrator if you find any non-working links on this page.