DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

(Follow-up) Agreement Reached With Metropolitan Life Insurance Co. Over Release of Some Customers’ Personally Identifiable Information

Posted on January 24, 2012 by Dissent

Attorney General George Jepsen and Consumer Protection Commissioner William Rubenstein have reached an agreement with Metropolitan Life Insurance Co. to provide additional protections to the current and former customers whose personal information was made public.

Information of current and former MetLife customers was part of a spreadsheet posted to the Internet by an employee of the company. When one of the customers saw the information in November, 2009, he contacted the employee who then notified the company, which took responsibility for correcting the problem and provided credit monitoring and identity theft insurance for the affected customers.

“The company acted voluntarily to correct the mistake of its employee and to protect its customers,” Attorney General Jepsen said. “But this agreement reinforces the need to make clear to anyone in possession of personally identifiable information about their legal requirements to protect it and ensure that it s not made publicly available.”

Commissioner Rubenstein said, “I share the Attorney General’s heightened concerns over consumer privacy and identity theft issues. In this instance, MetLife has stepped up to the plate to take its responsibilities seriously. We expect all companies to take the necessary steps to protect any personal information they may gather and we will continue to be vigilant in holding their feet to fire to do so.”

MetLife agreed to pay $10,000, which will be placed in a special fund used to reimburse the State’s investigative and enforcement costs, or reimburse these or future consumers for losses. MetLife also agreed to reimburse the cost of placing and lifting once security freeze per credit file per customer. Customers who paid to place or lift a security freeze themselves will be eligible for reimbursement. The company had previously paid for two years of credit monitoring and identity theft insurance for the customers affected.

MetLife also agreed to enhance its employee training policies and procedures about the legal requirements to protect personally identifiable information and specifically to prohibit posting such information to Internet websites.

Assistant Attorney General Matthew Fitzsimmons handled this matter for the Attorney General with Assistant Attorney General Phillip Rosario, head of the Consumer Protection department.

Source: Connecticut Attorney General George Jepsen

Category: Breach IncidentsBusiness SectorExposureOf NoteU.S.

Post navigation

← 3,000 “Saudi’s” Details leaked by 0xOmar
(Update) Attorneys General Seek Info about Zappos breach →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Central Maine Healthcare tackles suspected cybersecurity issue; hospitals remain open
  • Cartier Data Breach: Luxury Retailer Warns Customers that Personal Data Was Exposed
  • Beyond the Pond Phish: Unraveling Lazarus Group’s Evolving Tactics
  • Akira doesn’t keep its promises to victims — SuspectFile
  • Fraudsters, murderers, students: who the GRU assembled a team of hacker provocateurs from and why it failed
  • Order of Psychologists of Lombardy fined 30,000 € for inadequate data security protection and detection following ransomware attack
  • Lower Merion School District says a data breach was caused by a computer glitch (1)
  • After $1 Million Ransom Demand, Virgin Islands Lottery Restores Operations Without Paying Hackers
  • Junior Defence Contractor Arrested For Leaking Indian Naval Secrets To Suspected Pakistani Spies
  • Mysterious leaker GangExposed outs Conti kingpins in massive ransomware data dump

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Stewart Baker vs. Orin Kerr on “The Digital Fourth Amendment”
  • Fears Grow Over ICE’s Reach Into Schools
  • Resource: HoganLovells Asia-Pacific Data, Privacy and Cybersecurity Guide 2025
  • She Got an Abortion. So A Texas Cop Used 83,000 Cameras to Track Her Down.
  • Why AI May Be Listening In on Your Next Doctor’s Appointment
  • Watch out for activist judges trying to deprive us of our rights to safe reproductive healthcare
  • Nebraska Bans Minor Social Media Accounts Without Parental Consent

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.