I periodically post audits from the NYS Comptroller Thomas DiNapoli’s office pertaining to data protection. A recently released audit of SUNY-Albany reminds us that we need to continue to be concerned about inadequately wiped devices or drives that are to be surplussed. The audit period covered January – May 2012, and during that time, SUNY-Albany…
Category: Exposure
LabMD Responds to FTC Complaint: Claims Agency Lacks Enforcement Jurisdiction
Just received this press release from Cause of Action with LabMD’s response to FTC’s complaint: Cause of Action (CoA), a government accountability organization, filed an answer to an aggressive and arbitrary enforcement action brought by the Federal Trade Commission (FTC) against LabMD, a small cancer diagnosis company. CoA is defending LabMD against a complaint brought by the FTC in…
AZ: Job applications with personal information found in dumpster
Kristine Harrington reports that someone using the dumpster behind Denny’s in Phoenix discovered approximately 200 unshredded job applications. The manager says it never should have happened.
PLS Financial notifies customers after vendor’s programming error allowed others to access their information (update)
PLS Financial is notifying customers that a programming error by an unnamed web site operator exposed their personal information to other site users. The programming error, which occurred on July 11, allowed loan applicants to potentially view a restricted part of the site containing names, postal and e-mail addresses, and Social Security numbers. During the…
UK: Newcastle Citizen’s Advice Bureau data breach concern
BBC reports: An investigation is under way after the Citizen’s Advice Bureau in Newcastle inadvertently released personal information about some of its clients. About 1,300 files containing names, addresses, debt history and criminal records were accidentally made available on the internet. The Information Commissioner’s Office (ICO) is looking into the incident and a possible data…
NZ hat trick: EQC reports its third breach this year
Rebecca Quilliam reports: The Earthquake Commission has admitted to another breach of privacy after information on up to 260 claimants was sent to the wrong customers. Its chief executive Ian Simpson has launched an inquiry into how the information ended up on a letter that was sent to some clients. One side of the letter…