KATY (Covering Katy News) - A freedom of information request from a third party seeking the names of Katy Independent School District employees accidentally provided birthdates and social security numbers according to a school district spokesperson.
When the document was distributed there were hidden fields that contained the confidential information. Those fields were not discovered until after the document was distributed by the Katy school district to an outside organization.
Katy ISD was informed of the data breach, and the organization destroyed the document according to school district spokesperson Renie Deanda.
Those effected by the data breach were people employed at the end of 2017-2018 school year.
"Based on district information, there is no evidence of the data having been accessed," said a statement from Katy ISD. "Likewise, the incident is believed to be a very low security risk. The file was immediately destroyed upon discovery and credit monitoring agencies were promptly notified."
Below is the full statement from Katy ISD.
Statement from the District - Katy ISD recently learned that some personal information of employees was inadvertently released in response to a routine request for an employee list. Confidential information (birthdates and social security numbers) of staff employed at the end of the 2017-2018 school year was inadvertently embedded in the file that was released. Based on District information, there is no evidence of the data having been accessed. Likewise, the incident is believed to be a very low security risk. The file was immediately destroyed upon discovery and credit monitoring agencies were promptly notified. Katy ISD has also taken steps to proactively protect its employees affected by this incident, including providing a year of credit monitoring services, at no cost, to all staff directly impacted the incident.