Typeform Survey Data Breach

We received a message that Typeform had a data breach, which affected one or more of the surveys that we published. Typeform reports that an external attacker managed to get unauthorized access to a partial backup of respondent data and downloaded it.

The two forms affected were our Tech Survey and this year’s Conference speaker submissions.

The good news is that Typeform responded immediately and fixed the source of the breach to prevent any further intrusion. The bad news is that any information submitted in the forms could have been leaked – this includes mandatory responses like including name, email address and optional responses such as gender, ethnicity, age bracket, phone number etc.

What are you doing so this doesn’t happen again?

We will no longer be using Typeform as a platform for collecting responses that contain sensitive data, and instead be using Google Forms or Survey Monkey. Whilst no provider can guarantee that there won’t be a data breach, we feel that we can’t comfortably continue using the Typeform platform.

How widespread was the breach?

Many organisations use Typeform including Apple, Uber, Airbnb, and Nike. Affected in this breach (so far) are companies including Monzo (20,000 users), Crowdcube, Starling Bank, Post*Shift, the Tasmanian Electoral Commission … so we are by no means the only organisation affected.

What are you doing right now?

We have sent out emails to all affected individuals and released this statement on our website. As gender and ethnicity data were part of the data collected in the Tech Survey form, we will shortly also be notifying the ICO of the breach.

Would exercising my GDPR right to be forgotten have helped me?

No. Information from a third party’s backup was stolen, so whilst we wouldn’t still have your data, the backup would have contained it. And what’s more – we would no longer have your details to contact you about it!

What should I do now?

We recommend that you watch out for potential phishing scams, or spam emails, so be extra careful to only open messages that come from people or companies you know and trust.

Further information from Typeform can be found at https://www.typeform.com/data-breach-june-2018/

If you have any other questions, please don’t hesitate to contact us . We’re sincerely sorry for any inconvenience this causes.

Digital Health Conference in Exeter 2018

Wednesday 6th June 2018 at the University of Exeter

Small and big ideas in digital health & care are making a difference every day

We want to bring together those interested in using digital solutions and technologies to address everyday problems and challenges. We have an exciting day of masterclasses and presentations with lots of opportunities for discussions.

This conference is aimed at researchers, clinicians and practitioners in health and social care, as well as developer/technology partners – all coming together for a day of learning and sharing.

Suitable for novices and experts alike, the day will explore the current projects taking place locally, and how to move from idea to final product within health and social care.

Whether you are new to digital health and care, working on or have developed an app, checking out big data, artificial intelligence or virtual reality, join us for a thought provoking day.

More details: http://weareintodigitalhealth.com

Book Now: https://www.eventbrite.co.uk/e/digital-health-conference-in-exeter-tickets-44665720372

This event is being run by Dr Rupa Chilvers, and is supported by Tech Exeter CIC.