Customers of Winnipeg's Thermea spa alarmed after notification of …

The parent company of a popular luxury spa in Winnipeg is in hot water after a data breach opened the door for hackers to access a variety of private information from customers. This week, customers who purchased gift certificates from Thermea spa between early November and late February were told in an email that their credit card information may have been compromised, alongside their full names, phone numbers and email and street addresses. Groupe Nordik, the parent company of the spa, said that they learned of the breach in late February, shut down the gift certificate system and hired a third-party firm to investigate.

“We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the email said. Gift certificates that have not been redeemed are still valid, Groupe Nordik said. The appropriate authorities have been notified of the breach and affected customers were encouraged to keep an eye out for any suspicious activity.

Unencrypted credit card info

“What the email didn’t include, though, was any guidance around the risk of identity theft that they have now incurred for me,” John Robins told Radio-Canada in a Wednesday interview.

Robins purchased a Thermea gift certificate with his credit card at a Polo Park kiosk around Christmastime, he said. He has submitted a complaint about the breach to the Office of the Privacy Commissioner. He’s not aware of any fraudulent charges on his credit card, but he’s going through his records again.

Robins was surprised to learn that Thermea saved his credit card information for any amount of time. “I certainly did not think that I was putting myself in that level of risk when I made a simple point-of-sale transaction with Therma.” Gautam Srivastava, a Brandon University professor of computer science who specializes in cybersecurity, said it’s fairly normal for companies to keep the amount of customer information that Thermea did for situations involving marketing and repeat customers.

He said these kinds of data breaches are happening more often, since businesses are prioritizing ease of use.  While paying by the tap of a credit card or phone is speedy and efficient, those practices are not always compatible with good security, Srivastava said. “If you’re looking to encrypt and then decrypt information, there’s time lags there, and so a lot of systems that are built for ease of use find those sorts of things compromised.”

He said Thermea isn’t entirely to blame for the data breach, as malicious attackers often test a number of companies within a specific vicinity in search of system weaknesses. Thermea is a well-loved establishment in Winnipeg, he said, so they won’t necessarily lose all of their business because of the data breach. There are steps Groupe Nordik can take to win back customers, such as keeping their security measures updated and ensuring customers that their information is safe, he said.

Consumers can protect themselves by changing the pins of their bank and credit cards periodically and using strong passwords for their emails, as well as multi-factor authentication or biometric verifications such as fingerprint technology. But at the end of the day, it’s a matter of trust, Srivastava said. “Their brand is going to take a hit for a little bit, but they can take steps in the future starting now to kind of win back some of that trust,” he said.

“When trust is broken in anything, it takes time to win back that trust, and sometimes you never do.” In a statement to Radio-Canada, Groupe Nordik said they hired a third-party cybersecurity firm to investigate the breach and will continue to work with them in the future. “We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the statement said.

Robins said the breach came at an unfortunate time for him and his family, as they lost their house to a fire in January 2022. He said Thermea is a bit of a local institution for Winnipeg and surrounding areas. “I’ve been there many times — really enjoy their service. It’s a real treat to be able to go to a spa.”

But Robins said Thermea will have to win his business back.

“I think giving an email notification that a breach happened is a good first step and I’m grateful for that credit where credit is due,” he said.

“But frankly given the — in my estimation — very weak data practices that this company has been engaged in, I really don’t want to go back to Thermea and jeopardize my data again with that firm.”

Tags:

aa-travel-insurance listed on couponmatrix.ukample-bosom listed on couponmatrix.ukfrescobol-carioca listed on couponmatrix.ukmitre listed on couponmatrix.ukryobi listed on couponmatrix.uktoby-carvery listed on couponmatrix.uk
aa-travel-insurance listed on couponmatrix.ukFor five-star travel insurance, trust the AA. Protecting you against the unexpected during your holiday or business trip abroad, the AA promises superior benefits at competitive prices. Join the family for less with an AA Travel Insurance promo code and enjoy no excess fees, free baggage replacement services, and medical rehabilitation on return to the UK. With the option of annual or single-trip cover, you’ll only ever pay for the assistance you’ll actually use. Love travel? Love AA Travel Insurance.
ample-bosom listed on couponmatrix.ukAmple Bosom do what they say on the tin by providing comfortable yet always stylish bras and lingerie for women with, well, a more ample bosom. If you do have a fuller figure, it can be hard to find the right fit which is why Ample Bosom pride themselves, not only on their products but also the fitting advice available. Stocking all major lingerie brands, including Goddess, Sloggi and Triumph, you're bound to find a bra and other complementary lingerie items to use your ample bosom discount code on.
frescobol-carioca listed on couponmatrix.ukFrescobol Carioca is a luxury swim and resort wear brand that was born on the beaches of Rio de Janeiro. Frescobol Carioca's designs are inspired by the colours and energy of Brazil, and the brand has become synonymous with summertime style. Whether you're looking for swimwear, beachwear or vacation attire, Frescobol Carioca has something to suit every taste. And now, thanks to our Frescobol Carioca discount codes, you can enjoy even greater savings on your next purchase! Here at Groupon, we are always on the lookout for ways to help you save money. That's why with our help, you can get the best Frescobol Carioca discount codes today. With this code, you can enjoy savings on your next purchase from Frescobol Carioca. So whether you're looking for a new swimsuit or just some vacation-ready attire and accessories, be sure to check out our discount code before you shop. One of our top-performing products from Frescobol Carioca is the Men's Swim Trunks. These trunks are made from quick-drying fabric and feature an elastic waistband for a comfortable fit. They're perfect for a day at the beach or poolside lounging. So check out our page, to see if you can save even more on these trunks with our Frescobol Carioca promo code. So don't wait, grab your promo code and head to Frescobol Carioca today!
mitre listed on couponmatrix.ukMitre is your go-to for all things football. The ball of choice for the English league, this brand combines the highest quality gear with affordable prices for every sport-loving shopper. Discover training kits, clothing, equipment and accessories for less with a Mitre discount code from Groupon—we've got a great range of seasonal offers, exclusive codes, free delivery deals and special sales to help you save on your next Mitre haul.
ryobi listed on couponmatrix.ukYou and Ryobi are the dream team when it comes to DIY. Whether you’re mowing the lawn, fixing the shed or crafting a masterpiece, Ryobi tools get the job done the right way, and they’ll come with a three-year warranty to keep you tinkering for years to come. As experts in power tools like pressure washers and lawn mowers, shop with a Ryobi discount code from Groupon to cut the cost of your next project and keep your tool shed fully stocked with supplies without breaking the bank.
toby-carvery listed on couponmatrix.ukThere’s no more satisfying way to spend a Sunday afternoon than indulging in a Great British roast. So, why not drop into Toby Carvery where you can tuck into top value roast dinners, every day of the week! Browse our range of Toby Carvery vouchers to cut the costs on tender, UK-sourced meats, tons of veg and all the delectable trimmings. With plenty of options to keep the kids happy too, you can treat the whole family at Toby Carvery without breaking the bank.