Thursday, March 28, 2013

EQC's latest privacy fail

Two days ago we learned that EQC had inadvertantly emailed its claims database - containing information on 80,000 people - to a client. That was bad enough, but now its just been revealed in Parliament that they've had another privacy fail, this time mailing out the names and bank accounts of over 2,000 people.

This is unacceptable. EQC's lax practices around sensitive personal information have just exposed 2,000 people to a risk of identity theft and fraud. And these are the breaches we know about. How many others have there been which have not yet been brought to the attention of politicians and the media?

Obviously there needs to be accountability for this, including heads on spikes. But more importantly, EQC needs to sort its shit out, and start treating people's private information with the care and respect it deserves.

Update: Link added.