After an investigation into the theft of an unencrypted flash drive containing the personal information of nearly 12,000 individuals, British Columbia Information and Privacy Commissioner Elizabeth Denham found that the University of Victoria did not meet its legal obligations to protect the sensitive data, The Victoria Times Colonist reports. Saying the incident is part of an "epidemic," Denham noted, "We've investigated over 500 data breaches in the last few years...I would say a good 30 percent of those data breaches involved unencrypted mobile devices." Denham also said that though the university did have privacy and security policies, "the institution failed to implement reasonable safeguards to protect data stored on the USB drive." University President David Turpin said the school accepts Denham's "thorough and thoughtful" findings.
If you want to comment on this post, you need to login.