A MyBroadband member recently received unsolicited email from Edgars Club for a travel offer, using an address he specifically created for Discovery.
When he asked Discovery about the spam, and how Edgars got the email address, the company said a third-party error had caused the problem.
“Subscribers to our email newsletter who submitted their email addresses to enter a competition had their competition entry details mistakenly compromised by our publishing partner with a single third party,” said Discovery.
The company said both the publisher and the third party have deleted the email addresses.
“Client confidentiality is absolutely paramount to us, so we have taken strong corrective action and have implemented the appropriate measures to ensure this does not happen again.”
Who leaked the data?
While Discovery didn’t name its publishing partner or the third party, John Brown Media did confirm its partnership with Discovery and Edgars on the two affected campaigns.
It said the breach happened because of a competition that was being run on behalf of Edgars Club for a travel offer, with the prize donated by Discovery.
Competition entrants’ details were shared with an unnamed third party. John Brown Media stressed that only the competition entries were shared, and not Discovery’s client database.
They were immediately alerted, the list was destroyed by the third party, and a letter of assurance was sent to Discovery confirming that the list would not be used again.
“We deal with blue-chip clients and it would be highly unprofessional and unethical to share clients’ databases,” said John Brown Media.
“In fact, we do not manage any of our clients’ databases.”
The compromised list which was destroyed was generated from competition entries.
“We have put measures in place to ensure this does not happen again.”