Unintentionally, the New York City Department of Education released more than intended personal information on 3,000 public school children and 100 staff members, authorities acknowledged data leak on Thursday.
At least one student in the public school system gained access to a Google Drive containing the personal information of students and city employees.
It was not specified how the student gained access to the information, nor was it confirmed when the data breach took place. Mail was sent out to those who were affected.
The education department’s investigation of the data breach revealed no indication that the information in the files had been abused or shared with anyone. Officials think that no social security numbers of parents or kids were involved, noting that the department does not routinely collect social security numbers for inclusion in databases.
Even yet, the agency is giving free credit monitoring and identity theft monitoring services for two years to anyone who was harmed. A third-party consumer privacy platform, IDX, will provide that service.
District 28 in Queens is home to at least one school whose children were affected by the data leak. On Thursday evening, Superintendent Tammy Pate notified the district’s parent-led Community Education Council about the event.
“I wanted to let you know that this really did happen,” she replied in response. In reaction to the event, the department has adopted rigorous data privacy measures, she said. Now we must authenticate using a three-part method, she added.
Vijah Ramjattan, president of District 28’s CEC, claimed after the meeting that the event was neither malevolent nor deliberate.