Dentsu's marketing firm, Merkle, experienced a data breach of their computer system. As a result, many current and former employees of Merkle expressed anger and fear over what to do, many plan to seek legal recourse. Honestly, nobody wants to have the bank or salary information in the wrong hands, am I right?
So let's talk about what took place, what information was taken, and why there has been such a strong reaction from so many people about seeking retribution for this incident.
The issue with this situation was that an individual had stolen files and stored them on a hard drive (this was confirmed by Dentsu).
The information contained in the files included:
Many of the members of the WhatsApp group expressed that Dentsu has not provided any information to these employees and no one knows what information has been stolen. Wouldn't this terrify most people?
If it turns out Dentsu failed to manage its data appropriately or maintained personal information for more than a year, it's highly likely the company will face severe repercussions and fines.
I can't help but wonder whether or not the compromised information has already been circulated unlawfully by the thief or thieves, as the answer remains unknown until someone comes forward.
So let's talk about what took place, what information was taken, and why there has been such a strong reaction from so many people about seeking retribution for this incident.
What Did Dentsu Experience?
Dentsu discovered unusual activity on the Merkle computer system, and they contacted cybersecurity specialists and law enforcement agencies and notified the applicable UK regulatory agencies.The issue with this situation was that an individual had stolen files and stored them on a hard drive (this was confirmed by Dentsu).
The information contained in the files included:
- Employee bank account numbers,
- Employee salary numbers,
- Employee National Insurance numbers, and
- Employees' personal details (home address, phone number, etc.).
What Are Employee’s Reactions?
Many employees of Merkle do not feel safe. Over one hundred fifty former employees have established a WhatsApp group to discuss what actions they should take together to respond to the breaches of security.Many of the members of the WhatsApp group expressed that Dentsu has not provided any information to these employees and no one knows what information has been stolen. Wouldn't this terrify most people?
Legal Action Begins
A site known as "Join the Claim" has been developed to help individuals hurt by these incidents connect with attorneys. The UK's information commissioner also continues to investigate what happened to the personal information of Dentsu employees.If it turns out Dentsu failed to manage its data appropriately or maintained personal information for more than a year, it's highly likely the company will face severe repercussions and fines.
Dentsu's Response
The Dentsu Group denies having discovered any “leaks” of the compromised data, although it has offered one year of free “financial and dark web” monitoring to each affected employee. However, the offer is only partially adequate.I can't help but wonder whether or not the compromised information has already been circulated unlawfully by the thief or thieves, as the answer remains unknown until someone comes forward.
What We Learn
The current situation provides many lessons:- Our identity and financial information can facilitate identity theft and other types of fraudulent behaviour.
- Corporations must take appropriate steps to secure the personal information of their employees.
- Employees of corporations have the ability to hold their employer accountable when the business fails to meet its obligations to the employee in terms of protecting the employee's data.
- As a result of this lawsuit, perhaps other organisations will reconsider the necessity of maintaining employee personal records indefinitely.