Lost info leads to anger
Those affected by the student loan privacy breach announced on Jan. 11 are organizing and demanding government accountability.
“Student loan borrowers affected by the HRSDC privacy breach,” a Facebook group of 2, 459 borrowers (as of 12:27 a.m. PST on Jan. 31), has organized with more than 250 signing a letter released on Monday, Jan. 28. The letter expresses concerns over Human Resources and Skills Development Canada’s (HRSDC) latest solution to the breach, an offer of a free fraud alert flag provided by credit bureau Equifax, something HRSDC said normally costs five dollars.
“What HRSDC purchased from Equifax was a unique solution that was designed specifically for this particular incident,” said Alyson Queen, HRSDC communications director. “It’s not the free service. This is added for six years.”
On Jan. 23, two days before HRSDC began offering fraud alerts through Equifax, Canada’s other national credit bureau, TransUnion, began charging five dollars to enable fraud alerts. Both bureaus offer credit monitoring services starting at $14.95 per month.
“I can’t afford the $30 to $40 per month in fees for credit monitoring packages from both bureaus,” University of British Columbia graduate Nick Hall said. “Those affected should not be out of pocket for the way the government has mishandled their information.”
Amanda Thoy started the Facebook group on Jan. 12, hoping to provide a forum for those affected to voice concerns.
“We have now become more of an awareness group speaking out against HRSDC,” Thoy said, asserting the department’s dealings with the public had not been honest. “Many Canadians are still not aware this breach has happened.”
Wende Donaldson, a 2001 graduate of ICT Kikkawa College in Toronto, paid the fraud alert fee to Equifax before HRSDC’s announcement. Now she’s attempting to be reimbursed.
“It’s the principle,” she said. “Someone needs to be held accountable for this.”
Many borrowers are still awaiting promised correspondence from HRSDC containing information on credit protection services offered and further information about what to do next. When one Facebook group member asked the group if anyone had received a letter, not one of the 70 respondents had.
“The letters are going out for everyone for whom we have current contact information,” Queen said. “The department stopped sending letters for a short period of time, just so that any future letters that were being sent would have information on the credit protection.”
The department is missing current contact information for one-third of those affected, according to Queen. Meanwhile, the federal government is facing four class-action lawsuits. Bob Buckingham Law in St. John’s, N.L. is among the firms filing.
“The government has 30 days to file a defence to my action and we have 90 days to file the motion to certify,” Buckingham said.
On Nov. 5, 2012, an HRSDC employee discovered a hard drive containing the personal information of 583, 000 student loan borrowers was missing. The public was notified 67 days later.
“The information was compiled for the purposes of a customer satisfaction survey,” Queen said. “There are now going to be disciplinary measures in place if employees do not follow protocol.”
The hard drive is still deemed missing, but at this point Queen reaffirmed there’s no reason to believe any fraudulent activity has occurred. HRSDC is asking students to contact them to learn if they’re affected or to arrange credit protection services.