Rebecca Quilliam reports: The Earthquake Commission has admitted to another breach of privacy after information on up to 260 claimants was sent to the wrong customers. Its chief executive Ian Simpson has launched an inquiry into how the information ended up on a letter that was sent to some clients. One side of the letter…
Category: Exposure
Bank of Tokyo-Mitsubishi notifies employees after AON Hewitt e-mail gaffe discloses their information
The Bank of Tokyo-Mitsubishi recently notified some employees that their names and Social Security numbers had been erroneously emailed by their vendor AON Hewitt to another client of AON Hewitt. The email error occurred on August 2 and employees were notified on September 3. Although the risk analysis indicated a very low risk of misuse,…
FTC complaint against LabMD could serve as guidance to businesses on data security
The Federal Trade Commission has released a provisionally redacted public version of its complaint against LabMD (PHIprivacy.net’s coverage of LabMD linked here). The complaint provides what could be useful guidance as to what types of practices the FTC considers to be problematic practices under the Act: 10. At all relevant times, respondent engaged in a number of…
Errant e-mail creates security breach at MNsure
Jackie Crosby reports: A MNsure employee accidentally sent an e-mail file to an Apple Valley insurance broker’s office on Thursday that contained Social Security numbers, names, business addresses and other identifying information on more than 2,400 insurance agents. An official at MNsure, the state’s new online health insurance exchange, acknowledged it had mishandled private data. . Read…
Luton Borough Council signs undertaking after data protection failures
An undertaking has been signed by Luton Borough Council following two incidents involving inappropriate handling of sensitive personal data. These incidents occurred after the council failed to implement recommendations made by the ICO for mandatory employee training following earlier incidents. The two more recent incidents involved sensitive personal data that was incorrectly handled by social…
WA: Pierce County Housing Authority notifying Section 8 housing wait list residents after data breach
King5 staff report: The Pierce County Housing Authority is conducting an investigation into a security breach that impacts all the people on the county’s wait list for Section 8 housing. The staff does not yet know how it happened, but the names and social security numbers of all the people on the wait list appeared…