Jump to content

Tig16

Members
  • Content Count

    5
  • Joined

  • Last visited

  1. Thanks I already have the information I needed and have been able to proceed.
  2. Thanks but apart from the GDPR issue for UK citizens anywhere in the world, the UK lawyer asked him to send a copy of it and instead of sending a certified letter with the document he took a picture of it with his phone and texted the picture to the UK lawyer and by accident to my son in CA. Any document with personal identifying information should be handled with care, including when sent electronically, but apparently not a problem in the US.
  3. My ex husband in CA used his cell phone to photograph my years old divorce decree and text it to someone, but he sent it to my son in NV. When my son asked him what this was and why he had sent it to him, my ex husband told him it was a mistake, his lawyer in the UK asked him to photograph it and text it to him. My son was very upset and showed me the text photo and the full decree he received. I am concerned that this private document was exposed when sent over unsecured cell phone text messaging. This was done without my permission and I am concerned about my private documents being texted within the US and internationally. I feel this is a breach of my privacy. Do I have any legal protections regarding this?
  4. Thank you for responding to my question. I have been really worried about the consequences of identity theft about this issue and truly appreciate your responses. I will seek out a local employment law attorney to discuss the matter further.
  5. I applied to a job with a big company I had worked for in the past, through their online career site. In order to submit the application they required my full social security number to be entered in the application. I was conflicted about the security of entering it, but the site stated my application would not be considered without it. I went ahead and submitted on a Thursday evening. I received an email acknowledgement at the email address I provided, which included a full copy of my online application, including my social security number. They apparently did not have code to restrict the ss # from disclosure through unsecured email. This email account was with a well known service provider. By the following Monday, I received and auto reject letter, which was the fastest response I had ever received and I was alarmed in case this was a scam to get my ss#. I wrote to the CEO of the company and explained the breach of security that occurred. The following week I got an email from a talent manager at the company, asking me to contact her and I replied, but got her out of office notice. She did email back and gave me a phone number to call her as she was offsite all week. When I called I got vm stating she was unavailable, so I left a msg and my call back number, but she never called me back. I emailed again and asked that she at least delete my ss# from all their systems immediately. A couple of days later I received a terse email stating she had deleted my information, so I told her I was still waiting for an explanation as to why the ss# was visible in the email attachment. I never heard back from her, so I emailed the CEO and asked if someone could contact me as soon as possible as they didn't seem to be taking this very seriously. A couple of days later I received an email from the Director of talent services, apologizing that his manager had not responded to my concerns timely and asked to set up a call time, which we did. When he called me, I shared my concerns with him about the publishing of my social security number across unsecure email systems, the requirement of a full ss# in the online app, (which was new) and the failure to establish a secure system and code to remove the ss# from the emails. Also that nobody had bothered to talk to me about it and I was left worrying about the exposure. He said he agreed with my views about all of these concerns and then went on to give me an explanation. He stated the company had recently merged and there were so many job applicants who were former employees of different companies now all merged, that they were in a real mess. This is a major corporation and from my previous experience with the company, I new they had outsourced much of recruitment services to a big company. He explained that the servicing company had implemented this new requirement for the ss# in the online job app. so that they could verify who people were. He agreed with my opinion that obtaining the ss# at the beginning of the process was not a security conscious practice and that it was better to wait until a job offer was made. He then told me that I had brought a major security hole in their system and that a lot of people were working on it to try and fix the problem. He said he did not have access to alter the code, but were working on it to prevent the application being emailed back to prospective employees. I was anxious about it, but because he was frank with me, I didn't want to make a fuss. However, I was later notified by my service provider that my email account was one of a large number that were hacked and that my personal information was compromised. I was instructed to change security questions and my passwords, which I did, but I have no idea what, if any of my email has been accessible to the hackers. I believe Nevada does have a "Security of Personal Information" Statute, my question is, do I have any recourse against the company? They receive a lot of job applications, so thousands of people could have been impacted by this. It is rather an untenable position to be in, knowing that at any time someone could steal my identity. Thanks in advance to anyone who has time to respond.
×
×
  • Create New...