The The Information Commissioner’s Office (ICO) has served monetary penalties to North Somerset Council and Worcestershire County Council after staff at both authorities sent highly sensitive personal information to the wrong recipients. The news comes as the Information Commissioner is pressing for stronger powers to audit data protection compliance across local government and the NHS….
Category: Exposure
Skagit County Health Department information leaked on Internet
Tahlia Honea reports: Information about people using services at the Skagit County Health Department and other county departments was inadvertently leaked onto the Internet recently. In mid-September a student who had been given an assignment to Google her own name, discovered that some of her private information was on the Internet and alerted the Health…
MassBay employee database is compromised
Scott O’Connell reports: MassBay Community College notified employees last week that a security breach had been discovered in the school’s worker database system. The glitch, which affected nearly all employees in the system since 2002, allowed certain staff to view personal information like Social Security numbers and home addresses of anyone in the database. College…
Confidential files from Ohio Rehabilitation Services Commission found in public trash bin
AP reports: The state government watchdog says confidential personal information was found in documents from a job agency for Ohioans with disabilities that were discovered in an outdoor trash bin. A spokesman for Inspector General Randall Meyer said it was unclear Monday how many Ohio Rehabilitation Services Commission records were involved and that the office…
BBC America Shop customer orders leaked
Over the weekend, I received an e-mail from a BBC America Shop customer revealing that the bbcamericashop.com site was leaking customers’ order information – names, billing and shipping addresses, phone numbers, item number ordered, and e-mail addresses. The exposed orders had been placed between June 10 of this year and that day. No credit card…
AU: ADP exposes client emails
Michael Lee reports: Payroll services company ADP Australia has inadvertently made a marketing email list accessible on the internet, exposing its customers to spam and phishing messages. The list, which ADP said was dated 2007, was being used at the time to send out ADP client newsletters. The company said the list only contained email…