The Laval Transit Corporation has launched an investigation after more than one hundred expired student transit cards were found lying on the ground near the Longueuil metro station on Montreal’s South Shore. Unlike the regular-fare “Opus” smart cards, the student cards contain private information including a person’s name, photo and school. […] The Agence Métropolitaine…
Category: Exposure
UK: First monetary penalties served for serious data protection breaches
The Information Commissioner today served two organizations with the first monetary penalties for what he characterized as serious breaches of the Data Protection Act. The first penalty, of £100,000, was issued to Hertfordshire County Council for two serious incidents where council employees faxed highly sensitive personal information to the wrong recipients. The first case, involving…
FTC Approves Final Order Settling Charges that Rite Aid Failed to Protect Medical and Financial Privacy of Customers and Employees
Following a public comment period, the Federal Trade Commission has approved a final order settling charges against Rite Aid Corporation, and sent letters to members of the public who submitted comments on the order. The FTC charged that the company failed to protect the sensitive financial and medical information of its customers and employees. The…
NC movers get apology for data breach
The N.C. Utilities Commission is eating crow after inadvertently posting a Greensboro moving company’s confidential information online in violation of the commission’s own privacy policy. The gaffe happens at a time when the commission has issued fines of up to $1,000 against more than 50 moving companies – and is threatening to yank their operating…
Insurance Glitch Affects AARP Customers
A Glen Burnie man helped uncover an error in the AARP insurance program that sent life insurance reviews to the wrong customers, compromising their identities…… “I looked at the form, and I was shocked. It didn’t have my name on it, phone number, date of birth or my policy number. It had someone else’s personal…
UK: Local Authority disclosed personal data on Planning Department website
New Forest District Council breached the Data Protection Act by publishing the personal data of planning applicants on their website, the Information Commissioner said today. The Information Commissioner’s Office (ICO) received a complaint from a New Forest resident in 2008, after council staff failed to appropriately redact personal data from the resident’s planning application before…