P2019-ND-076

The Organization is a third party administration firm and was creating portals for clients. During the process, the website was populated with the wrong certificate numbers which allowed some individuals to see personal information of a fellow union member. The incident occurred between December 27, 2018 and January 7, 2019. The incident was discovered on January 4, 2019 when a member contacted the Organization to report she accessed the portal and could see another person’s information.

File Type: pdf
File Size: 329 KB
Categories: 2019