Thanks to those states who post notifications online…. TravelCLICK, Inc. reported (pdf) that customers who used their web site to book hotel reservations may have had their data accessed by unauthorized others during the period February to March of this year. Reservation data included names, full credit card numbers, expiration date, but no CVV or…
Author: Dissent
FTC enforcement of data protection
Since 2001, the FTC has filed charges against 25 businesses for failure to protect consumers’ information. The cases were cited in their May 5th testimony and comments (pdf) in Congress about two bills being considered: H.R. 2221, the Data Accountability and Protection Act, and H.R. 1319, the Informed P2P User Act. The cases fall into…
Pointer: Heartland CEO Vows To Fight MasterCard Breach Fines Of $6 Million-Plus
Fred J. Aun of StorefrontBacktalk writes: Heartland Payment Systems has apparently decided that being a data breach victim doesn’t mean that it has to be victimized by the card brands. At least that’s the impression from how Heartland CEO Robert Carr is reacting to more than $6 million in fines imposed on it by MasterCard,…
UK: Baby records theft sparks inquiry
From the BBC: An inquiry is under way after the records of babies born in Aberdeen Maternity Hospital were handed in after apparently being stolen. Letters of apology have been sent to 175 parents after the records of their babies born between 2001 and 2008 were given to NHS Grampian. The documents appeared to have…
Deja vu all over again: Another Continental Airlines laptop stolen
Continental Airlines, which reported a laptop stolen from their Newark office earlier this year found themselves again in the unenviable position of notifying employees of yet a second stolen laptop. On March 30, a laptop was stolen that contained employee information such as name, Social Security number, Continental ID number, position title, and contact address….
TN: Improper records disposal leads to notification of clients
State Farm Insurance reported (pdf) that when they discovered that an employee of a Tennessee agent had improperly disposed of trash containing customer information, they decided to notify all customers of the Tennessee agent. They report that as a consequence of the incident, the agent changed their procedures to use a secured waste container in…