Lyons Companies Provides Notice of Data Event

Lyons Companies (“Lyons“) takes the security and privacy of all information that it holds very seriously. While there is currently no evidence that there has been any actual or attempted misuse of information, Lyons is providing notice after an investigation into a data privacy incident. Out of an abundance of caution, Lyons is providing individuals with information about the incident, steps being taken in response, and measures individuals may take to better protect their information, should they feel it appropriate.

HR Technology News:  ON Partners Sees 48% Growth, Ranked Among Top 20 Executive Search Firms

What Happened? On March 12, 2019Lyons learned of unusual activity in an employee email account. Lyons immediately took steps to respond and commenced an investigation, which included working with third-party forensic experts. Lyons determined through the investigation that two Lyons employee email accounts were accessed without authorization. One email account was subject to unauthorized access between February 4 and March 12, 2019, and the second account was accessed for a few hours on March 12, 2019.  The investigation was unable to confirm whether and what information, if any, was potentially accessed. Therefore, in an abundance of caution, Lyons undertook a diligent review of all data within the relevant email accounts to determine what information was present and to whom that data related.

HR Technology News: Viasat Named to Fortune Magazine’s 2019 Change the World List

What Information Was Involved? Lyons takes this matter, and the security and privacy of all information that we hold very seriously.  While the data present in the affected emails varies by individual, it may include: name, contact information, driver’s license information, bank account or other financial information, date of birth, medical record number, patient identification number, medical and/or clinical information including diagnosis and treatment information, Medicare or Medicaid identification number, and health insurance and claims information. For a small percentage of individuals, the data may also include Social Security number.

What Is Lyons Doing? In addition to conducting a diligent investigation, Lyons has enhanced the security of its systems to mitigate the risk of future incidents. The company is also providing individuals with notice of this incident and “Privacy Safeguards” guidelines that may be used to better protect personal information. As an added precaution, Lyonsis providing potentially impacted individuals with access to complimentary credit monitoring and identity restoration services.

What Can Individuals Do? Lyons encourages those who may be affected to review the “Privacy Safeguards” guidelines the company is providing to help better protect personal information.

HR Technology News:  Best-In-Class Security Draws Record Number of Customers to iManage Cloud