Back in May, Saint Anselm College notified the New Hampshire Attorney General’s Office that a spring 2010 mailing of its alumni newsletter had inadvertently exposed SSN of 122 New Hampshire residents on the mailing labels. This month, Saint Anselm notified the office that it seemed that the exposure problem had occurred as early as its…
Category: U.S.
When your database of all staff is on a flash drive that goes missing…
On boy…. On September 9, Cooper University Hospital in New Jersey notified the New Hampshire Attorney General’s Office that a flash drive with a database of employees’ personal information was discovered missing on July 8, less than 24 hours after the database had been copied to the drive. The drive went missing from the Graduate…
Lost in transit, Thursday edition
Through its lawyers, Rhode Island-based Benefit Concepts, Inc. recently notified the New Hampshire Attorney General’s Office that a package containing employee payroll checks and a CD with copies of the payroll checks went missing. According to the notification letter, their vendor, CompuPay, had sent the package on July 19 via FedEx and it should have…
Shreveport oversight causes security concerns
Brittany Pieper reports that the City of Shreveport, Louisiana left lots of personal and sensitive information lying around when they held a pre-demolition auction of furnishings at the City Hall Annex building. People found boxes of records with breath alcohol tests, signatures, SSNs, addresses, ID cards, and a whole lot more. KSLA News 12 asked…
Burglary at SanDiegoFit.com office: computer with customer data stolen
Through their lawyers at Foley & Lardner, SanDiegoFit.com, an online women’s apparel site, reported that on August 30, there was a burglary at their locked, alarm-protected building that resulted in the theft of a computer containing customer data. In its notification to the New Hampshire Attorney General’s Office dated September 10, the company reported that…
Cardinal Health notifies employees and applicants of missing laptop
When a good samaritan contacted Ohio-based Cardinal Health in mid-June to tell them that a used laptop purchased on eBay contained company information, Cardinal Health recovered the laptop and began to investigate. Under their policies, data on decommissioned computers are to be securely deleted by their IT department and then securely destroyed by a vendor….