For more than two decades, digital security experts have been trying to protect your information from would-be hackers — who might be working to steal it from as far away as a Russian office overseas or as close to home as a sixteen-year-old working from his mother’s basement. And it hasn’t gotten easier to protect this information, which is why you’ve heard about data breach after data breach from huge companies with familiar names.
Employers have always collected personal information. They need your name, number, address, and social security number just to run business smoothly — and make sure you’re paid promptly.
And that’s why hackers have increasingly targeted them. A few years ago, the Pennsylvania Supreme Court ruled that every employer had the duty to protect each employee’s information. Failing to implement adequate security could land them in hot water legally, especially when identities are stolen or negligent behavior on the part of big corporations leads to an individual’s financial loss.
There was an important class-action case known as Dittman v. UPMC. Barbara Dittman and her attorneys sued the University of Pittsburgh Medical Center and UPMC McKeesport alongside a number of other plaintiffs on whose behalf they fought after their private information was stolen. All 62,000 employees who worked for UPMC experienced this theft.
Dittman and her attorneys argued that UMPC did not take the appropriate precautions to protect the data, such as setting up strong firewalls or establishing authentication protocols for accessing the private information store on the company’s servers.
This was the case that made it clear that Pennsylvania workers had the right to hold onto their private information, and that it was up to employers to protect it. But a few years later, that information is still under constant attack, and courts are struggling to hold companies liable for these damages as hackers get better at stealing. And that means more lawsuits are inevitable in the future.