Madison, IN Thunder storm 72°
Listen Live

Search 95.3 WIKI

Attorney General Todd Rokita secures $49.5 million multistate settlement with Blackbaud for data breach

Friday, October 6, 2023 at 10:47 AM

By Josh Myers @Wikicountry

Fight to hold tech companies accountable

                               

Attorney General Todd Rokita continued his leadership in the fight to hold tech companies accountable for consumer privacy today, announcing a $49.5 million multistate settlement with the software company, Blackbaud. 

 “Nonprofits doing their great work rely and depend on vendors like Blackbaud to protect sensitive and private information,” Attorney General Rokita said. “This type of leak is unacceptable, and we fought back on behalf of Hoosiers.” 

 Attorney General Rokita, with the Attorney General of Vermont, led a coalition of 50 attorneys general to investigate the incident and negotiate a settlement after its deficient data security practices and response to a 2020 data breach that exposed the personal information of millions of consumers. Under the settlement, Blackbaud has agreed to overhaul its data security and breach notification practices and also make a $49.5 million payment to states.  

 As lead state, Indiana will receive nearly $3.6 million from the settlement, more than any other state.  

“While it doesn’t make up for Blackbaud’s negligence, I am glad we have held them accountable for their actions,” Attorney General Rokita said.   

 Blackbaud provides software to various nonprofit organizations, including charities, schools, churches, and healthcare organizations. Blackbaud’s customers use their software to connect with donors and manage data about their constituents, including demographic information. Social Security numbers, driver’s license numbers, financial information, donation history, and protected health information were also given to the company.  

 This type of highly sensitive information was exposed during the 2020 data breach, which impacted over 13,000 Blackbaud customers and their respective consumer constituents.   

 The settlement resolves allegations that Blackbaud violated state consumer protection laws, breach notification laws, and HIPAA by failing to implement reasonable data security, which allowed hackers to gain access to the network.  

 Blackbaud also failed to provide its customers with timely, complete, or accurate information regarding the breach, which is required by law.   

 As a result of their actions, the proper notification to consumers, whose personal information was exposed, was significantly delayed or never occurred at all. Blackbaud downplayed the incident and led its customers to believe that notification was not required. 

 Under the settlement led by Attorney General Rokita and his office, Blackbaud has agreed to strengthen its data security and breach notification practices going forward.   

 Indiana’s settlement is attached.

 

 

Share

More from Local News

Chandler Chevrolet presents Maniacal Mondays Win a FREE oil change!
Pledge of Allegiance and National Anthem on WIKI Pledge of Allegiance and National Anthem on WIKI
WIKI Country Gold Show Three hours of classic country gold every Saturday morning from 7a-10a

Events

Local News

More Kentucky students graduating from college debt free

Students in Kentucky are completing an undergraduate credential debt free.

Kentucky Governor Announces $10.3 million in grants for waste and recycling projects

73 Projects across the state will benefit from the funding

Hardinsburg Man Arrested for Child Molestation and Related Crimes

Four day investigation led to his arrest

Local Sports

Local Area Sports Report for May 10-11 and 14, 2024

Any missing scores or to report a score email news@953wiki.com

Hanover Baseball wins program's first HCAC Tournament Title

The Panthers will await the NCAA selection show on Monday at noon for their Regional opponent.

ORVC Weekly Report Summary (April 29 – May 4) 2024

Congratulations to all the area athletes