DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

OPSM parent company loses $33.5 million contract for sending ADF medical records overseas

Posted on July 30, 2014 by Dissent

Malcolm McBratney, John Kettle and Alex Hutchens of McCullough Robertson write:

The parent company of OPSM, Luxottica Retail Australia has lost a $33.5 million contract with the Australian Defence Force (ADF) by sending ADF medical records overseas.

Luxottica was awarded the contract by the ADF in 2012 under which it provided optical services to all ADF personnel. At that time, Luxottica claimed that it would exclusively offer eye services to more than 80,000 ADF personnel each year primarily through its OPSM stores.

Earlier this month, the ADF’s service provider, Medibank Health Solutions (MHS) revealed that Luxottica had breached its contract with ADF by sending ADF medical records overseas, when the contract required ADF medical records be kept in Australia.

It is understood that the ADF medical records were sent to Luxottica’s own server located overseas and included personal information such as name, military unit and results of eye tests and prescriptions.

Read more on Lexology.

Category: Uncategorized

Post navigation

← Customers concerned after CVS mailing error exposed their prescriptions
Appeals Court Agrees To Hear Wyndham’s Challenge To FTC →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Hospital cyberattack investigation complete, no formal review needed
  • Largest Ever Seizure of Funds Related to Crypto Confidence Scams
  • IMPACT: 170 patients harmed as a result of Qilin’s ransomware attack on NHS vendor Synnovis
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • UBS reports data leak after cyber attack on provider, client data unaffected
  • Scania confirms insurance claim data breach in extortion attempt
  • Cybersecurity takes a big hit in new Trump executive order
  • Episource notifying 5.4 million patients of cyberattack in January
  • Investigation of 2024 Helsinki data breach – Report
  • Major trial underway for data leak that left 72,000 victims in France

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data
  • DOJ Seeks More Time on Tower Dumps
  • Your household smart products must respect your privacy – including your air fryer
  • Vermont signs Kids Code into law, faces legal challenges
  • Data Categories and Surveillance Pricing: Ferguson’s Nuanced Approach to Privacy Innovation
  • Anne Wojcicki Wins Bidding for 23andMe

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.