The Privacy and Security Law Blog has a nice article by Hunton & Williams LLP on the new European Parliament position on data breach notification requirement for telecoms and ISPs. As the authors note, “For the first time in EU law the amendments [to the e-Privacy Directive] introduce a definition of “personal data breach” and…
Category: Business Sector
Deja vu all over again: Another Continental Airlines laptop stolen
Continental Airlines, which reported a laptop stolen from their Newark office earlier this year found themselves again in the unenviable position of notifying employees of yet a second stolen laptop. On March 30, a laptop was stolen that contained employee information such as name, Social Security number, Continental ID number, position title, and contact address….
TN: Improper records disposal leads to notification of clients
State Farm Insurance reported (pdf) that when they discovered that an employee of a Tennessee agent had improperly disposed of trash containing customer information, they decided to notify all customers of the Tennessee agent. They report that as a consequence of the incident, the agent changed their procedures to use a secured waste container in…
Godwin Pumps of America employee data on stolen laptop
On March 4, a laptop containing personal information on about 180 employees of Godwin Pumps of America was stolen in Cobb County, Georgia. According to the notification (pdf) sent by the firm’s lawyers, information on the password-protected laptop contained the employees’ names, addresses, dates of birth, and Social Security numbers. There was no indication of…
Lost laptop contained Penton Media customer credit card data
On March 16, a Penton Media employee lost a laptop and case containing some customer credit card information in hard copy and electronic form. The laptop was password-protected but the electronic files were not encrypted. The files contained customers’ names, credit card numbers, and credit card expiration dates of 54 customers who attended an IWCE…
Laptop with Catalent Pharma Solutions employee data stolen
On February 23, a laptop assigned to a Corporate Human Resources Department employee of Catalent Pharma Solutions was stolen from vehicle in New Jersey. The laptop contained information on 2,656 current and former employees, including their names, addresses, Social Security numbers, and salary information. The laptop was reportedly password-protected. Catalent’s draft of their notification (pdf)…