close
News Stream Books Videos Web Conferences Subscriptions Advertise About IAPP Publications
Daily Dashboard Daily Dashboard

The day’s top stories from around the world

 Privacy Perspectives Privacy Perspectives

Where the real conversations in privacy happen

 The Privacy Advisor The Privacy Advisor

Original reporting and feature articles on the latest privacy developments

 Privacy Tracker Privacy Tracker

Alerts and legal analysis of legislative trends

 Privacy Tech Privacy Tech

Exploring the technology of privacy

 Canada Dashboard Digest Canada Dashboard Digest

A roundup of the top Canadian privacy news

 Europe Data Protection Digest Europe Data Protection Digest

A roundup of the top European data protection news

 Asia-Pacific Dashboard Digest Asia-Pacific Dashboard Digest

A roundup of the top privacy news from the Asia-Pacific region

 Latin America Dashboard Digest Latin America Dashboard Digest

A roundup of the top privacy news from Latin America

 U.S. Privacy Digest U.S. Privacy Digest

A roundup of US privacy news
Overview Communities Networking Volunteer Privacy After Hours Privacy List Membership Directory Career Central
IAPP Communities

Meet locally with privacy pros, dive deep into specialized topics or connect over common interests. Find your Community in KnowledgeNet Chapters, Sections and Affinity Groups.
Join the Privacy List

Have ideas? Need advice? Subscribe to the Privacy List. It’s crowdsourcing, with an exceptional crowd.

 Find a KnowledgeNet Chapter Near You

Talk privacy and network with local members at IAPP KnowledgeNet Chapter meetings, taking place worldwide.

 IAPP Job Board

Looking for a new challenge, or need to hire your next privacy pro? The IAPP Job Board is the answer.
Privacy Training Classes Privacy Core Awareness GDPR Training Sample Questions Books Web Conferences Faculty Resource Center Train Your Staff Conferences
Find a Privacy Training Class

Two-day privacy training classes are held around the world. See the complete schedule now.

 Upcoming Web Conferences

See our list of upcoming web conferences. Just log on, listen in and learn!

 Train Your Team

Get your team up to speed on privacy by bringing IAPP training to your organization.

 Privacy Core® library delivers 30+ units

Train your entire global workforce with comprehensive, customizable online training available in a number of languages.

 Online Privacy Training

Build your knowledge. The privacy know-how you need is just a click away.

 Training Product Updates—Get Them Here!

Training online? See the latest updates to our online training programs and our newest textbooks.

 Let’s Get You GDPR Ready Let’s Get You GDPR Ready

May 25 was not the end—it’s just the beginning. We have all the resources you need to meet the challenges of the GDPR.

New! - The Privacy Imperative

View this three-video series featuring global privacy leaders as they discuss the importance of creating a culture of privacy
Overview Certification Programs Get Certified How to Prepare Continuing Privacy Education (CPE) Fees Certify Your Staff Verify a Certification
CIPP Certification CIPP Certification

The global standard for the go-to person for privacy laws, regulations and frameworks

 CIPM Certification CIPM Certification

The first and only privacy certification for professionals who manage day-to-day operations

 CIPT Certification CIPT Certification

The industry benchmark for IT professionals worldwide to validate their knowledge of privacy requirements

 FIP Designation FIP Designation

Recognizing the advanced knowledge and issue-spotting skills a privacy pro must attain in today’s complex world of data privacy.

 Privacy Law Specialist Privacy Law Specialist

The first title to verify you meet stringent requirements for knowledge, skill, proficiency and ethics in privacy law, and one of the ABA’s newest accredited specialties.

 CIPP/E + CIPM = GDPR Ready CIPP/E + CIPM = GDPR Ready

The IAPP’S CIPP/E and CIPM are the ANSI/ISO-accredited, industry-recognized combination for GDPR readiness. Learn more today.
Tools Research Glossary DPAs FTC Casebook Enforcement Database IAPP Westin Research Center Jobs Vendors
GDPR Member State Derogation Tracker

Compare member states' treatment of each GDPR derogation using this new tool from the IAPP.
Privacy Vendor List

Find a privacy vendor to meet your needs with our filterable list of global service providers.
Data Protection and Brexit

Looking for the latest on data protection post-Brexit? IAPP members can get up-to-date information right here.
Join the Privacy List

Have ideas? Need advice? Subscribe to the Privacy List. It’s crowdsourcing, with an exceptional crowd.
Are You Complying with the GDPR?

The IAPP's EU GDPR page collects the guidance, analysis, tools and resources you need to make sure you're meeting your obligations.
The 2018 Privacy Tech Vendor Report

We've updated the Privacy Tech Vendor Report highlighting companies offering privacy technology solutions and insight on market trends from industry leaders.
IAPP Data Protection Intensive: UK IAPP Data Protection Intensive: UK

Registration is open for the March event in London. Join us for a program focused on adaptation in a world of change.

 CCPA Comprehensive 2019 CCPA Comprehensive 2019

An in-depth, day-long survey of the California Consumer Privacy Act of 2018 with top experts in California privacy law.

 IAPP Global Privacy Summit IAPP Global Privacy Summit

The world’s top privacy conference. Whether you work in the public or private sector, anywhere in the world, the Summit is your can't-miss event.

 IAPP Canada Privacy Symposium IAPP Canada Privacy Symposium

Registration for the Toronto event opens in February. Sign up for reminders to reserve your spot and preview the program.

IAPP Asia Privacy Forum IAPP Asia Privacy Forum

World-class discussion and education on the top privacy issues in Asia Pacific and around the globe.

Privacy. Security. Risk. (P.S.R.) Privacy. Security. Risk. (P.S.R.)

P.S.R. offers the best of the best in privacy and security, with innovative cross-education and stellar networking.

 IAPP Europe Data Protection Congress IAPP Europe Data Protection Congress

The hub of European privacy policy debate, thought leadership and strategic thinking with data protection professionals.

 IAPP Data Protection Intensive: France IAPP Data Protection Intensive: France

Concentrated learning, sharing, and networking with all sessions delivered in parallel tracks—one in English, the other in French.

 Mark Your Calendar

Future conference dates? We've got them! Get updates here.

 Speak at an IAPP Event

View our open calls and submission instructions.
Individual Membership Corporate Membership Group Membership Student Membership
Become a Member

Start taking advantage of the many IAPP member benefits today

 Corporate Members

See our list of high-profile corporate members—and find out why you should become one, too

 Renew Your Membership

Don’t miss out for a minute—continue accessing your benefits
{[product.name]} {[ product.name ]}
clear
mode_editEdit
remove_circle_outline {[ getCartItemQuantity(product.id) ]} add_circle_outline
{[ product.price | currencyFilter ]}
TOTAL: {[ getCartTotalCost() | currencyFilter ]} Update cart for total shopping_basket Checkout

The Privacy Advisor | Healthcare Entities, Hotels, Bank Announce Breaches Related reading: $10 Million Stolen in Bank Breach

rss_feed
GDPR-Ready_300x250-Ad

A number of brands have announced breaches this month, including Tesco, which was the victim of a breach not because of its own systems but as a result of breaches at various websites in which users employ the same username and password across multiple sites. A U.S. senator recently said data breaches are simply a “fact of life” these days, and an eSecurity Planet report explains why brands’ stock prices may actually rise after breaches.

Delaware’s Beebe Healthcare has begun notifying 1,900 patients that their personal and medical information may have been inappropriately accessed after learning a contractor was arrested for incidents related to identity theft years prior to her employment, eSecurity Planet reports.

In another healthcare breach, the Easter Seal Society of Superior California has sent data breach notifications to 3,026 current and potential clients after a laptop containing their information was stolen.

Embassy Suites San Francisco Airport in California has similarly begun notifying an undisclosed number of recent guests that their payment card information may have been exposed after an unauthorized person accessed two computers at the hotel’s front desk.

Also in the U.S., Bank of the West has sent letters and e-mails to job applicants after the potential theft of such data as Social Security and driver’s license numbers.

And UK-based Tesco has announced the usernames and passwords of some customers’ accounts were posted online, affecting about 2,200 accounts. While Tesco wasn’t itself hacked, data gleaned from details gathered from other data breaches at various websites was used to access the accounts of users who maintain the same username and passwords across multiple sites.

Data Breaches the Impetus for Shift in Trends

A recent study found that the rise in reported data breaches is the main reason brands implement encryption technology, ComputerworldUK reports. That’s according to a Ponemon Institute study, which surveyed 4,800 organizations.

An eSecurity Planet report looks at the reasons why a brand’s stock price could potentially rise after a data breach. It comes down to incident management, the report states. “When done right, incident response management is a valuable weapon for limiting material or reputational damages caused by data breaches,” the report states.

Meanwhile, U.S. Sen. Mark Pryor (D-AR) says data breaches are now a “fact of life” in the 21st century, and The Charlotte Observer features privacy expert Ted Claypoole’s list of “five things every small business should know about cybersecurity.

 

Author
Angelique Carson, CIPP/US Angelique Carson, CIPP/US
Tags
Data Loss
Comments

If you want to comment on this post, you need to login.

Related Stories
$10 Million Stolen in Bank Breach
The FBI and Secret Service have arrested 95 suspects in a data breach involving Bank of America, Infosecurity Magazine reports. A former bank employee provided customer information to scammers who used the information to hack into about 300 Bank of America customer accounts in California and surroun...
Read More queue Save This
$4M Settlement in Heartland Breach
A Texas federal court gave preliminary approval of a $4 million settlement in a consumer class action lawsuit against Heartland Payment Systems Inc., reports Computerworld. The settlement will add to the more than $100 million in costs that Heartland has already paid out for a January 2009 data brea...
Read More queue Save This
$675K in Breach Fines Levied Against CA Hospitals
The California Department of Public Health (CDPH) announced Thursday it has issued privacy breach fines totaling $675,000 against five hospitals after the CDPH determined the facilities did not prevent unauthorized access to confidential patient information. "Medical privacy is a fundamental right a...
Read More queue Save This
$975K Settlement for Breach
Certegy Check Services will pay $850,000 to the state of Florida for a 2007 data breach that impacted nearly six million personal records, SC Magazine reports. The payment will reimburse investigative and legal expenses incurred by the state attorney general's office. In addition, the company will p...
Read More queue Save This
"Tragedy of Errors" Led to UMaine Breach
Forensic analysis of a breach at the University of Maine has revealed that data from 2,818 individuals was compromised when hackers accessed a server, the Bangor Daily News reports. Used in conjunction with the University of Arkansas (UoA), the server contained customer information--including Social...
Read More queue Save This
Related Stories
Tags
Data Loss
Recent Comments