NorQuest College scrambling to reassure staff after massive privacy breach kept secret

CBC

Updated September 27, 2016 at 8:30 a.m.

NorQuest College scrambling to reassure staff after massive privacy breach kept secret

More than three years after discovering a massive privacy breach that included confidential employee information, NorQuest College president Jodi Abbott is scrambling to reassure staff the college properly handled the situation.

Abbott never told the college's employees that in April 2013 NorQuest officials discovered a "vast quantity" of confidential information on the personal computer of former information technology (IT) manager Clarence Orleski.

CBC News publicly revealed the breach, and two alleged frauds, earlier this month, using documents the college filed years ago in its civil court case against the former manager.

Court documents show Orleski's personal computer contained the confidential salary information of all 600 employees, copies of disciplinary letters, interview notes from internal investigations, personal emails between employees and their spouses, even the president's employment contract.

In a Sept. 16 email to all NorQuest staff, obtained by CBC News, Abbott said the college had reason not to inform its employees.

"Legal counsel advised us that due to a pending potential criminal investigation by Edmonton Police Service (EPS), ongoing litigation, restrictions around the use of seized records, and emerging evidence of an alleged fraud perpetrated against the college, there was a risk that broad disclosure of the privacy breach would hinder both the criminal and civil investigations," Abbott wrote.

College covered up privacy breach, former employee says

But a former NorQuest employee, who had direct knowledge of the events surrounding the privacy breach, said the college's biggest concern at that time was covering up the embarrassing privacy breach and the two alleged frauds.

"They were very happy that when the lawsuit was filed, no reporter found it," said the former employee who spoke on condition of anonymity. "They saw it as a godsend."

The former employee said several people from the president's office, human resources, and the IT department, who knew about the privacy breach and alleged frauds, were made to sign non-disclosure agreements that threatened dismissal.

"That is part of why it is a joke about them not only not telling their employees about the breach but actively, from the very start, covering it up," the former employee said.

Edmonton police have confirmed NorQuest filed a criminal complaint but one man who admits his involvement in the alleged frauds told CBC News he has never been contacted by anyone from EPS over the past more than three years.

Privacy expert Linda McKay-Panos also doesn't buy the explanation that the privacy breach was kept secret for legal reasons, given that NorQuest provided detailed information about the breach and two alleged frauds in court documents it knew would be public.

"It just seems to me that because of the nature of the information that was on there, as soon as they found it, it would have been a best practice to at least let those individuals know so they could take steps to protect themselves," said McKay-Panos, executive director of the Alberta Civil Liberties Research Centre.

Another search of seized data planned

Abbott, in the email, also downplayed the size and severity of the privacy breach, saying the college's initial investigation determined Orleski had access to "limited personal information" from the vast majority of NorQuest employees.

"However, to further reassure everyone, an additional search of the data will be conducted," she wrote.

McKay-Panos said it is clear the college may have prematurely assumed its employees' confidential information was not at risk of being transferred to a third party.

"My fear, for the people whose information was in that computer, is an assumption [by NorQuest] that it wasn't already otherwise revealed to some other people, and the use that could be made of that data," she said.

"I think people have the right to know that their information was not secure and that they need to take steps to start watching, at minimum, that someone might be using their identity."

Abbott's email also does not explain why the college did not disclose the breach to Alberta privacy commissioner Jill Clayton.

The commissioner has already launched an investigation into an individual privacy complaint from a NorQuest employee. Clayton has encouraged other employees to file complaints so her office can expand the investigation.

In the email, Abbott said the college will now meet with Clayton's office "to share with them the unique facts in this matter and our approach."

Union, faculty association express concern

Abbott has not responded to several interview requests from CBC News and the college has refused to directly answer questions.

Both the college's faculty association and the Alberta Union of Provincial Employees have asked the college to provide more information. The AUPE is also considering filing grievances against the college for its handling of this issue.

The court documents detailing the privacy breach are part of a lawsuit NorQuest filed against Orleski. The college alleged Orleski and several others were part of two separate "kickback" schemes that, taken together, cost NorQuest nearly $2 million over five years.

Orleski and the defendants who filed statements of defence denied the allegations and none were proven in court. The college dropped its lawsuit in January 2016. Through his lawyer, Orleski declined an interview request, saying the terms of the agreement are confidential.

@jennierussell_ @charlesrusnell

If you have information about this story, or information for another story, please contact us in confidence at cbcinvestigates@cbc.ca

BANG Showbiz
Megan Thee Stallion being sued for ‘forcing cameraman watch her having lesbian sex!’
In a suit being brought by her ex-cameraman, Megan Thee Stallion is being sued for allegedly creating a hostile work environment and forcing her former videographer to watch her having lesbian sex.
a day ago
Yahoo Canada Style
Sophie Grégoire Trudeau is leaning into the unknown for her next chapter: 'I'm OK with the uncertainty'
No question was off limits in Yahoo Canada's candid and emotional conversation with the "Closer Together" author.
2 days ago
Sacramento Bee
Ex-teacher had sex with her student on his 8th-grade graduation, California prosecutors say
The former Butte County teacher pleaded no contest Monday to the charges.
13 hours ago
HuffPost
How Toxic Is Trump? Republican Group's Hidden Camera Reveals Uncomfortable Truth.
The former president's behavior just doesn't fly out in the real world.
2 days ago
People
Ex-Aide Says Melania Trump Will Be Watching 'Every Ounce' of Hush Money Trial — and Looking for 1 Thing
Stephanie Grisham, who served as chief of staff and press secretary to Melania, offered a window into her former boss's thinking as Donald's alleged affairs take center stage in the Manhattan trial
a day ago
ABC News
'So appalled': What witnesses told special counsel about Trump's handling of classified info while still president
In the summer of 2019, only hours after an Iranian rocket accidentally exploded at one of Iran's own launch sites, senior U.S. officials met with then-president Donald Trump and shared a sharply detailed, highly classified image of the blast's catastrophic aftermath. Worried that the image becoming public could hurt national security efforts, intelligence officials urged Trump to hold off until more knowledgeable experts were able to weigh in, the sources said.
8 hours ago
HuffPost
Donald Trump Will Hate What Mitt Romney Just Said About The Hush Money Trial
"So far as I know, you don't pay someone $130,000 not to have sex with you," the Utah senator remarked about the ex-president's payments to Stormy Daniels.
a day ago
The Daily Beast
Trump Picks Another Fight With Judge as He Waits for Contempt Ruling
PoolDonald Trump just can’t help himself.Moments after a contentious hearing about whether Trump should be held in contempt for violating his narrowly worded gag order, the former president took to his favorite social media platform to trash the judge who holds his fate. “HIGHLY CONFLICTED, TO PUT IT MILDLY, JUDGE JUAN MERCHAN, HAS TAKEN AWAY MY CONSTITUTIONAL RIGHT TO FREE SPEECH. EVERYBODY IS ALLOWED TO TALK AND LIE ABOUT ME, BUT I AM NOT ALLOWED TO DEFEND MYSELF,” Trump wrote on Truth Social
2 days ago
INSIDER
I tried Gordon Ramsay's favorite 10-minute pasta and now I know why he makes it every week
Gordon Ramsay swears by this easy 10-minute pasta dish, which he said has become a "regular midweek family meal" in his house.
7 hours ago
INSIDER
Where Reena Virk's killers are now almost 30 years on from her murder that inspired 'Under the Bridge'
Hulu's "Under the Bridge" tells the story of the 1997 murder of Canadian teen Reena Virk. Here's where her killers, Warren Glowatski and Kelly Ellard, are now.
18 hours ago
People
'My Drink Tasted Funny': Pregnant Woman's Last Words Revealed After Alleged Fatal Poisoning by Boyfriend
Jade Benning died on her 25th birthday on March 6 after she was rushed to the hospital the week before
a day ago
People
Kourtney Kardashian's Sexy Bikini Photo from Her 45th Birthday Leaves Husband Travis Barker Melting
Kardashian enjoyed a vacation in paradise with her husband and four kids in honor of "45 trips around the sun"
a day ago
People
Sydney Sweeney Poses Upside Down During Vacation: 'Hanging in Hawaii'
The 'Anyone But You' actress has been sharing her daily dose of travel content
a day ago
HuffPost UK
This Is Why Coachella Has Been Hit With A Hefty Fine Due To Lana Del Rey's Set
Organisers must fork over tens of thousands of dollars following Lana's performance on Friday night.
20 hours ago
The Daily Beast
How Putin’s Whirlwind Bromance Could End in a Kremlin Tragedy
Sputnik/Alexei Nikolsky/Kremlin via ReutersThe Kremlin is reportedly scrambling to find a successor to Ramzan Kadyrov following reports that the Chechen leader has been diagnosed with necrotizing pancreatitis, a terminal illness, according to Russian media reports.Kadyrov, also known as “Putin's attack dog” or “Putin’s soldier” for his loyalty to Russian President Vladimir Putin, has visited Moscow Central Clinical Hospital regularly through the years to undergo procedures. He was allegedly diag
a day ago
People
“Call Her Daddy'”s Alex Cooper Models Her Wedding Night Lingerie in Instagram Reveal: See the Racy Look
Cooper wore a sexy lacy bodysuit from SKIMS' Wedding Shop collection after marrying Matt Kaplan in Mexico
6 hours ago
Hello!
Prince Louis' birthday photos all have this in common – did you notice?
Prince William and Princess Kate's son, Louis, celebrated his sixth birthday with a new photo - and Kate Middleton has a habit of including the same detail in the annual portrait
19 hours ago
People
Florida Man Runs Over 11-Foot Alligator with Truck to Save Neighbor from Attack
"We pulled over and I got out of the car and saw that an alligator had him by the leg," Walter Rudder recalled to a local news outlet about the scary incident
a day ago
People
Kim Kardashian Reveals the Viral SKIMS Nipple Bra Was Modeled After Her Own Breasts
The bra was first released in October 2023
a day ago
The Daily Beast
‘Big Scandal’ Behind Russian Deputy Defense Minister’s Arrest
Moscow City Court Press Office/Handout via Reuters Russia’s deputy defense minister was arrested Wednesday just hours after attending a meeting of top military brass, according to federal investigators. Timur Ivanov is officially charged with accepting a massive bribe—but some sources say that’s just for show.“The bribe–that’s for the public. So far they don’t want to talk publicly about treason, it’s a big scandal. After all, it’s the deputy minister of defense,” one unnamed source close to the
18 hours ago

Latest Stories