Published on Brock University (http://brocku.ca)
I am writing to inform you that some of your student information was inadvertently made accessible through Internet searches. This occurred when a file containing some student information was accidentally uploaded onto a publicly accessible Brock website by a library employee. The information file included all student names, student numbers, phone numbers, mailing addresses and email addresses. The file that was inadvertently uploaded has been deleted. All student files are now safe and secure.
University officials were alerted to the situation on Jan. 28 when a student told library staff that he had accessed some of his own information when he did a Google search of his name. University staff immediately deleted the file and contacted Google to have all of the information erased from any search archives or indexes. It is extremely unlikely that the information contained in the file could be used to access any further personal information at the University, because of password protection and security measures that are in place.
A situation like this is not something we take lightly, and immediate steps were taken to reduce the risk of any recurrences. Brock University is committed to the highest level of security of student information and the protection of privacy, and has informed the Office of the Information and Privacy Commissioner/Ontario of the incident to ensure
that all obligations under the Freedom of Information and Protection of Privacy Act are fullfilled.
Although there is no immediate risk posed by this incident, we routinely encourage students to regularly change their passwords for security purposes. Students can access the passwords for their campus accounts through the portal at my.brocku.ca
If you have any questions regarding this matter, please contact University Communications at firstname.lastname@example.org or at 905-688-5550 x4687.
Provost and Vice-President Academic