Djaron: i expect a huge amount of spam and scam to come in my mail box now...
but i cant change my mailbox's password (old isp and discontinued service contract...)
Sheesh, change emails already, it's a matter of time till you're going to get serious issues if you don't have full control over it.
wpegg: I wish Simon were still around to update us on the legal stuff...
Does anyone know if the various information commissions such as the EU or the UK's ICO have jursidiction over this to impose fines? They've done it to many organisations that aren't incorporated in that country, but Valve are always slippery on obeying local laws.
I guess the question is if they can be held accountable for bugs. It's not like they intentionally/willfully allowed information to be leaked.
From the sound of it, they were supposed to have CC#'s and Phone#'s censored, which they are, on the account detail page, however due to the caching error people were able to see the autofill of people who had a CC linked (not the CC#), so they could see their billing info, which included the phone number.
So that one could be a problem for them, though only for people who had the CC linked.
