ChoicePoint just won’t be outdone. They were, after all, the company that started all the extensive attention on data security breaches. Back in February 2005, ChoicePoint announced that it had improperly sold personal data on about 145,000 people to identity thieves. Pursuant to a California data security breach notice law, ChoicePoint notified the affected individuals in California. Soon afterwards, many states started thinking: Geez, we’d like our citizens to be informed too. They put up a fuss, and ChoicePoint voluntarily agreed to notify all of the 145,000 people it said were affected. Many states subsequently passed data security breach notification laws similar to California’s.
After ChoicePoint’s announcement came a barrage of announcements of security breaches by numerous companies and institutions. According to a very useful listing and tally by the Privacy Rights Clearinghouse, data security breaches have affected over 50 million Americans (there may surely be some double-counting here, as some unlucky folks may have been affected multiple times).
Now ChoicePoint has announced that it has notified another 17,000 people that their personal data was compromised in the breach announced in February. According to the AP:
ChoicePoint Inc., the company that disclosed earlier this year that thieves had accessed its massive database of consumer information, said Tuesday in a regulatory filing it has sent out another 17,000 notices to people telling them they may be victims of fraud.