The Colorado Office of the Attorney General announced SEMA Construction agreed to pay more than $63,000 after a data breach. In 2018, a phishing attack at the company exposed the personal information of nearly 2,000 individuals. The personal information, including Social Security numbers and financial information, was improperly stored in employee emails. While the company learned of the breach in 2019, it did not notify employees until 2020. Additionally, SEMA must update its security practices.
10 Nov. 2021
Colorado construction company agrees to pay $63K after 2018 breach
RELATED STORIES
Notes from the IAPP Canada: DPAs to gather for 46th Global Privacy Assembly
Presidential election 2024: Where the candidates stand on privacy and AI governance policy
A view from DC: US government builds AI governance through policies, panels and procurement
Ontario IPC's Transparency Challenge submissions showcase personal data utilization
Notes from the Asia-Pacific region: Facial recognition in focus for NZ