2016 Postmortem
Related: About this forumNGP VAN explanation blog post
http://blog.ngpvan.com/news/data-security-and-privacyOn Wednesday morning, there was a release of VAN code. Unfortunately, it contained a bug. For a brief window, the voter data that is always searchable across campaigns in VoteBuilder included client scores it should not have, on a specific part of the VAN system. So for voters that a user already had access to, that user was able to search by and view (but not export or save or act on) some attributes that came from another campaign.
"We are confident at this point that no campaigns have access to or have retained any voter file data of any other clients; with one possible exception, one of the presidential campaigns."
"We immediately began an audit to determine if any users had intentionally or unintentionally gained access to data they normally would not have access to within the limited timeframe when the bug was live. Our team removed access to the affected data, and determined that only one campaign took actions that could possibly have led to it retaining data to which it should not have had access."
peacebird
(14,195 posts)Because the DNC said he had to prove all data had been expunged.... If it could never have been exported or saved or acted on, then ..........
mmonk
(52,589 posts)into their memory banks.
Renew Deal
(81,870 posts)By Screenshot or camera
Larkspur
(12,804 posts)Obviously, they are incompetent or they do not understand the need for consumer privacy so they should be fired.
The Sanders campaign fired their data directer, as they should, now NGP VAN needs to fire their incompetent workers and managers who let this security breach happen in the first place.
winter is coming
(11,785 posts)And if it wasn't, then why all the fuss?