On December 1, 2018, a former member of the Discipline Committee reported being able to access a discipline file following a search on the Organization?s public website. The Organization?s IT group determined that disciplinary, appeals and registration files could be accessed through the ‘search’ functionality on the public website. An investigation found that the breach occurred in June 2018 when the Organization implemented a new website and, due to human error, the accessibility settings were incorrectly set. The potential for access to the files through the public website lasted from June 2018 until the security settings were reset on December 3, 2018.
File Type:
pdf
File Size:
331 KB
Categories:
2019