HSBC Bank USA National Association notified customers after an insider breach that occurred in July but was only posted to California‘s web site on October 30. It’s not totally clear to me when consumers were notified or when the state was.
From the letter to those whose SSN’s weren’t involved:
We recently became aware of an incident that occurred in late July 2012 where an employee who resigned from HSBC left with information about your account. The information potentially included your name, phone number, account number, and account type. HSBC takes this very seriously and we believe your personal information may have been exposed to a third party. We recommend that you take steps to mitigate the risk.
We recommend that you monitor your account transactions for any unauthorized activity and contact us if any is noticed. Although no information regarding your Social Security or Tax identification number were included, we recommend you place a fraud alert on your credit file.
From the letter to those whose SSN’s were involved:
We recently became aware of an incident that occurred in late July 2012 where an employee who resigned from HSBC left with information about your account. The information potentially included your name, social security number, phone number, account number, and account type. HSBC takes this very seriously and we believe your personal information may have been exposed to a third party. We would like to extend the following offer to you, as a precaution:
At our expense, would like to offer you a free one year subscription to ITAC Sentinel®, a credit monitoring and identity theft protection service. ITAC Sentinel provides essential monitoring and protection of not only credit data, but also monitors Internet chat rooms and newsgroups and alerts you if your Social Security number, credit cards, and bank account numbers are found in unsecure online locations. This program is provided by Intersections Inc. (NASDAQ: INTX), a leading provider of consumer and corporate identity risk management services.