Following a public comment period, the Commission has approved a final consent order in the CVS Caremark case involving failure to adequately secure customers’ medical and financial data. Prior coverage of the case can be found here. Additional documents on the case can be found here. According to the complaint, CVS Caremark did not implement…
Category: Exposure
AL: Medical records discovered in garbage truck, landfill
Hundreds of medical files with personal and medical details were found in and around a garbage truck at a landfill in Montgomery, Alabama. The records were marked, “Radiology Department, Baptist Medical Center.” Baptist Health uses a third party for some of its record disposal, and a spokesperson said that they are investigating the matter. Source:…
IN: Loan paperwork discovered in Mishawaka shopping center trash
Jim Meenan of South Bend Tribune reports that 80 files containing detailed personal and financial information on loan applications were found in a dumpster: There, right before his eyes, were files of loan applications, complete with names, Social Security numbers and even bank account numbers. Some files were thin, about 10 pages, others an inch…
UK: Personal data exposed on website
From Kevin Peachey and Bill Wilson of the BBC News: Personal data including the signatures of recipients has been exposed to those tracking deliveries on the Parcelforce website, the BBC has discovered. A failure in the system allowed people using the mail tracing service access to the name, postcode and signature of various addressees. The…
Sensitive documents found inside vehicle owned by Clayton County sheriff’s employee
Kathy Jefcoats of the Atlanta Journal-Constitution reports that Genevieve Prejean, a Clayton County sheriff’s employee, is under investigation after local police found a stack of sensitive material inside her car during a traffic stop. A convicted felon, Brandyn Keith Mathis, was driving her car at the time of the stop: Prejean told police she took…
(Update) ND: Stolen laptop contained donors’ financial data
The Post and Courier provides some more information about a University of North Dakota breach that was originally reported in October 2008. John McDermott and the AP report: A computer that was swiped from a car in Charleston last year contained personal financial information on 84,000 University of North Dakota donors, it was disclosed this…