On May 11, 2020, an unknown third party claimed to have accessed certain personal information of members of the Organization. Based on its investigation, the Organization learned that on or about January 12, 2020, an unauthorized third party gained access to the Organization?s data stored in a database hosted by a third party. The Organization learned that although a copy of the database is available online the decipher key is not, and therefore most of the more sensitive data was not compromised. The database did not contain financial or credit card data. The Organization reported that it routinely anonymized a number of data fields in the database at issue so that user responses were typically not readable in plain text.
File Type: pdf