Honestly, I suggest it to everyone: Change your passwords every 72 days. It's really not that hard to do and it could mean the difference between playing Xbox LIVE and having fun or sitting on the phone with MS support for an hour and a half submitting an unauthorized access form while someone else spends countless dollars off of your credit card.
Another form of privacy protection I take, which is a little more extreme: Prepaid credit cards. Inexpensive, and can be obtained at nearly any financial institution. With this, you can load the card with only certain amounts of money (specific dollar amounts for purchases, etc) and keeps unauthorized users from spending all your cash in the event of a security breach.
Those are steps you can take to cover your own ass, and this way you're completely self-reliant in that aspect. Either way it goes though, we live in a digital age. In no way can any company offer to completely protect your private and vital information so therefore it's up to you, as the consumer, to take matters into your own hands. This applies to any company.
Be a smart online shopper/player. Do that and you don't have to worry about these issues.