Customers of Winnipeg's Thermea spa alarmed after notification of …

The parent company of a popular luxury spa in Winnipeg is in hot water after a data breach opened the door for hackers to access a variety of private information from customers. This week, customers who purchased gift certificates from Thermea spa between early November and late February were told in an email that their credit card information may have been compromised, alongside their full names, phone numbers and email and street addresses. Groupe Nordik, the parent company of the spa, said that they learned of the breach in late February, shut down the gift certificate system and hired a third-party firm to investigate.

“We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the email said. Gift certificates that have not been redeemed are still valid, Groupe Nordik said. The appropriate authorities have been notified of the breach and affected customers were encouraged to keep an eye out for any suspicious activity.

Unencrypted credit card info

“What the email didn’t include, though, was any guidance around the risk of identity theft that they have now incurred for me,” John Robins told Radio-Canada in a Wednesday interview.

Robins purchased a Thermea gift certificate with his credit card at a Polo Park kiosk around Christmastime, he said. He has submitted a complaint about the breach to the Office of the Privacy Commissioner. He’s not aware of any fraudulent charges on his credit card, but he’s going through his records again.

Robins was surprised to learn that Thermea saved his credit card information for any amount of time. “I certainly did not think that I was putting myself in that level of risk when I made a simple point-of-sale transaction with Therma.” Gautam Srivastava, a Brandon University professor of computer science who specializes in cybersecurity, said it’s fairly normal for companies to keep the amount of customer information that Thermea did for situations involving marketing and repeat customers.

He said these kinds of data breaches are happening more often, since businesses are prioritizing ease of use.  While paying by the tap of a credit card or phone is speedy and efficient, those practices are not always compatible with good security, Srivastava said. “If you’re looking to encrypt and then decrypt information, there’s time lags there, and so a lot of systems that are built for ease of use find those sorts of things compromised.”

He said Thermea isn’t entirely to blame for the data breach, as malicious attackers often test a number of companies within a specific vicinity in search of system weaknesses. Thermea is a well-loved establishment in Winnipeg, he said, so they won’t necessarily lose all of their business because of the data breach. There are steps Groupe Nordik can take to win back customers, such as keeping their security measures updated and ensuring customers that their information is safe, he said.

Consumers can protect themselves by changing the pins of their bank and credit cards periodically and using strong passwords for their emails, as well as multi-factor authentication or biometric verifications such as fingerprint technology. But at the end of the day, it’s a matter of trust, Srivastava said. “Their brand is going to take a hit for a little bit, but they can take steps in the future starting now to kind of win back some of that trust,” he said.

“When trust is broken in anything, it takes time to win back that trust, and sometimes you never do.” In a statement to Radio-Canada, Groupe Nordik said they hired a third-party cybersecurity firm to investigate the breach and will continue to work with them in the future. “We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the statement said.

Robins said the breach came at an unfortunate time for him and his family, as they lost their house to a fire in January 2022. He said Thermea is a bit of a local institution for Winnipeg and surrounding areas. “I’ve been there many times — really enjoy their service. It’s a real treat to be able to go to a spa.”

But Robins said Thermea will have to win his business back.

“I think giving an email notification that a breach happened is a good first step and I’m grateful for that credit where credit is due,” he said.

“But frankly given the — in my estimation — very weak data practices that this company has been engaged in, I really don’t want to go back to Thermea and jeopardize my data again with that firm.”

Tags:

away-resorts listed on couponmatrix.ukhighland-fayre listed on couponmatrix.ukmango listed on couponmatrix.uksds-london listed on couponmatrix.uksmiggle listed on couponmatrix.ukspaseekers listed on couponmatrix.uk
away-resorts listed on couponmatrix.ukIf you ever want a reminder of how pretty a British holiday can be, then book a welcome stay at Away Resorts. As host to nine individual resorts stretching from the East Midlands to the Isle of Wight, an Away Resorts discount code is all you need to guarantee a beautiful and convenient place to stay for a fraction of the price. Whether you’d like a countryside escape with your dog in tow, a luxury stay for you and your soulmate or a full-on family holiday, there’s an option for each of these and more at Away Resorts.
highland-fayre listed on couponmatrix.ukHighland Fayre’s luxury food hampers are the stuff dreams are made of. Based in Scotland, this brand specialises in the best Scotland has to offer, including chocolate, fresh food, wine and cheese, as well as a range of gourmet food products from around the world. Try out a hamper for yourself or send one as a thoughtful gift, and be sure to apply a Highland Fayre discount code for money off your purchase. Check Groupon for Highland Fayre’s best offers, including site-wide discount codes, sales and more. Groupon should be at the front of your mind when making a purchase from Highland Fayre. Whether you’re looking for a delicious Christmas hamper or an indulgent vegan gift box, we can help you save with Highland Fayre voucher codes for free shipping or percentage discounts, and we’ll keep you informed about any new sales. We’re always refreshing our page, so keep checking back to access the best Highland Fayre deals. This brand shines when it comes to the Highland Fayre Scottish hampers. Sample Scotland’s best biscuits, wines and more indulgent treats – it works perfectly as a delicious gift for birthdays, anniversaries and Christmas. You can even enjoy a great saving if you shop with a Highland Fayre promotional code from Groupon: just enter the code at the checkout when you place an order.
mango listed on couponmatrix.ukEnhance your personal style and sophistication with Mediterranean-inspired clothing from Mango. Explore the uniquely feminine collection and update your wardrobe with timeless colours, cuts and patterns. Fill up your shopping basket for less with a Mango discount code and debut a look that’s both comfortable and stylish. From traditionally tailored pieces to laid-back lounge-wear, Mango will take your look from day to night effortlessly.
sds-london listed on couponmatrix.ukSDS London is a luxury fashion brand that offers voucher codes for its customers. The brand was established in 2013 by Sarah-Jane Darlington, who has worked as a fashion designer for over 10 years. The brand offers free shipping on orders over £100, and customers can enjoy discounts of up to 50% off with SDS London voucher codes. Sarah-Jane's designs are known for their elegance and sophistication, and the brand has been featured in Vogue, Elle, and Harper's Bazaar. SDS London's collections include apparel, accessories, and home decor. At Groupon, we believe that everyone deserves to enjoy the luxury of SDS London fixtures at a fraction of the cost. That's why we work hard to find discount codes and vouchers for our customers to use. We want you to be able to shop for your favourite SDS London fittings without breaking the bank, and we'll continue to update our selection of codes so that you can always save on your purchases. Thanks for choosing Groupon! SDS London's Pendant Light selection is a top-performing product that is sure to add a touch of luxury to your home. The light combines a sleek design with a matte finish for that timeless touch. Make the most of the latest SDS London discount code and enjoy this luxury lighting for less. This fixture is the perfect addition to any room, and it will instantly elevate your space, so make the smart choice and opt to illuminate with SDS London!
smiggle listed on couponmatrix.ukWhen it comes to cool, funky stationary, Smiggle have cornered the market. Starting way back in 2003, Smiggle set out with the goal of designing fun and creative stationary that is exciting to work with. Ideal for kids, the young at heart and anyone who has that creative spark, with a Smiggle discount code on Groupon to fit any budget. Perfect for when ‘back to school’ season kicks in, the bold and quirky styles are great for unique characters.
spaseekers listed on couponmatrix.ukAdd a healthy dose of self-care to your to-do list and book a sublime spa break with the health and leisure experts at SpaSeekers. Whether you’re in desperate need of a weekend away with the girls or want to treat that certain special someone to a romantic package for two, a spa seekers discount code will help you pamper yourself to perfection. Escape from the daily grind with a soothing massage or champagne-fuelled jacuzzi session - book yourself into a SpaSeekers experience today!