It was one of those deja vu experiences I’m increasingly likely to have these days. I read a breach notification template that involved health insurance information, made a note of it in my compilation worksheet for Protenus, and was going about my other work when I read another notification template that was identical – except for the number of individuals being notified and the name of the firm making the notification.
Both notification templates – from Corovan Corporation and Employer Leasing – are signed by Kimberly Kamencik, Chief Financial Officer.
Both notification letters describe the same incident – files being inadvertently exposed on a company server and indexed by Google sometime between September 14 and September 18, 2017. Both letters say that they started notifying impacted individuals on November 7, but then ongoing investigation revealed addition individuals who needed to be notified, so a second batch of notification letters was being sent out this month:
Corovan Corporation provided notice to approximately 440 California residents on November 7, 2017. However, Corovan Corporation identified an additional 293 impacted California residents during its continued investigation into this incident. Corovan Corporation is now providing notice of this incident to the California Attorney General because the November 7, 2017 notice to impacted individuals did not exceed 500 California residents.
On January 16, 2018, Corovan began providing written notice of this incident to those additional 293 impacted California residents.
— from Corovan notification, and:
Employer Leasing provided notice to approximately 193 California residents on November 7, 2017. However, Employer Leasing identified an additional 624 impacted California residents during its continued investigation into this incident.
Employer Leasing is now providing notice of this incident to the California Attorney General because the November 7, 2017 notice to impacted individuals did not exceed 500 California residents.
On January 16, 2018, Employer Leasing began providing written notice of this incident to those six hundred twenty-four (624) additional California residents.
I wonder if there are any more companies that will submit the same incident.