CALGARY- A number of job seekers have unknowingly had their privacy compromised, after a northeast restaurant posted hundreds of resumes online.
John Salaza applied to Flatiron Restaurant and Bar, handing in a hard copy of his resume during an interview.
“I went to an in-person interview and gave them my resume,” he remembers. “I don’t believe I submitted an electronic version, so they must have scanned it somehow.”
He never got the job, but three years later he was shocked to find his resume had made its way online—along with hundreds of others.
The breach was discovered by a woman who had also applied at the restaurant, when she typed her name into Google. The link to her resume popped up, along with other people’s phone numbers, addresses and work history.
“I’d like to know why they did that without my permission,” Salaza says. “This information should be superseded and archived upon closing the company. That’s a part of their own due diligence to make sure people’s private information is not disclosed like that.”
Privacy experts agree businesses are obligated to protect this kind of sensitive information.
“There are certain concerns around not only one piece of information, but a combination of several pieces of information, how that might be misused by someone with not a very good intent when looking at it.” says Carmen Mann, from the Office of the Information and Privacy Commissioner.
Flatiron is now out of business, but tells Global News it was unaware of the breach and has since taken steps to secure the website. It also reported itself to the privacy commissioner, which plans to investigate.
However, another former applicant says more needs to be done.
If you applied for a job at the restaurant and are concerned about your information, contact the Information and Privacy Commissioner.
-With files from Tracy Nagai
Comments