On August 8, 2024, Center for Living & Working, Inc. (CLW) in Massachusetts experienced a data security breach when an employee inadvertently sent a consumer’s housing application to another individual. This unintentional release included sensitive personal details such as the person’s name, address, date of birth, and Social Security number. The recipient of the misdirected information promptly notified CLW on August 16, 2024, after realizing the mistake.
CLW has taken immediate action to address this issue and is working with the unintended recipient to ensure that all personal data is either destroyed or returned to CLW. To prevent future occurrences, CLW has implemented additional measures, including reinforcing its policy of double-checking information before it is released. The employee involved will also undergo HIPAA compliance training by the end of the month to strengthen their understanding of data privacy protocols.
Under Massachusetts law, affected individuals have the right to request a police report if they believe they have been victims of identity theft due to this incident. They are also entitled to file a report and obtain a copy of it. Additionally, Massachusetts residents can place a security freeze on their credit files, which prevents unauthorized access to their credit report and helps reduce the risk of identity theft.
To place a security freeze, individuals can contact one of the major credit bureaus—Equifax, Experian, or TransUnion—either online or via certified mail. Federal law requires that credit freezes, removals, and adjustments be provided free of charge to protect consumers. CLW encourages affected individuals to use these safeguards to protect their identities and remain vigilant about monitoring their financial information in the wake of the breach.
Reference:
