I periodically post audits from the NYS Comptroller Thomas DiNapoli’s office pertaining to data protection. A recently released audit of SUNY-Albany reminds us that we need to continue to be concerned about inadequately wiped devices or drives that are to be surplussed. The audit period covered January – May 2012, and during that time, SUNY-Albany…
Category: U.S.
LabMD Responds to FTC Complaint: Claims Agency Lacks Enforcement Jurisdiction
Just received this press release from Cause of Action with LabMD’s response to FTC’s complaint: Cause of Action (CoA), a government accountability organization, filed an answer to an aggressive and arbitrary enforcement action brought by the Federal Trade Commission (FTC) against LabMD, a small cancer diagnosis company. CoA is defending LabMD against a complaint brought by the FTC in…
AZ: Job applications with personal information found in dumpster
Kristine Harrington reports that someone using the dumpster behind Denny’s in Phoenix discovered approximately 200 unshredded job applications. The manager says it never should have happened.
PA: Investigation launched into missing N. Franklin records
Scott Beveridge reports: North Franklin Township police are investigating the disappearance of records from the township building, some of them dating back to 2008. Township supervising Chairman Alex Migyanko said it appears the records, including planning commission and personnel files, appear to have been stolen earlier this year. Read more on the Observer-Reporter.
NHC Oak Ridge discloses breach involving unencrypted backup tape
The following email was published by The Oak Ridger after it was sent to them by NHC Oak Ridge administration: Officials at NHC Oak Ridge, 300 Laboratory Road, have reported a possible breach of patient information due to a missing backup tape that wasn’t encrypted. The information on this tape included patient names, Social Security numbers, birth…
PLS Financial notifies customers after vendor’s programming error allowed others to access their information (update)
PLS Financial is notifying customers that a programming error by an unnamed web site operator exposed their personal information to other site users. The programming error, which occurred on July 11, allowed loan applicants to potentially view a restricted part of the site containing names, postal and e-mail addresses, and Social Security numbers. During the…