Customers of Winnipeg's Thermea spa alarmed after notification of …

The parent company of a popular luxury spa in Winnipeg is in hot water after a data breach opened the door for hackers to access a variety of private information from customers. This week, customers who purchased gift certificates from Thermea spa between early November and late February were told in an email that their credit card information may have been compromised, alongside their full names, phone numbers and email and street addresses. Groupe Nordik, the parent company of the spa, said that they learned of the breach in late February, shut down the gift certificate system and hired a third-party firm to investigate.

“We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the email said. Gift certificates that have not been redeemed are still valid, Groupe Nordik said. The appropriate authorities have been notified of the breach and affected customers were encouraged to keep an eye out for any suspicious activity.

Unencrypted credit card info

“What the email didn’t include, though, was any guidance around the risk of identity theft that they have now incurred for me,” John Robins told Radio-Canada in a Wednesday interview.

Robins purchased a Thermea gift certificate with his credit card at a Polo Park kiosk around Christmastime, he said. He has submitted a complaint about the breach to the Office of the Privacy Commissioner. He’s not aware of any fraudulent charges on his credit card, but he’s going through his records again.

Robins was surprised to learn that Thermea saved his credit card information for any amount of time. “I certainly did not think that I was putting myself in that level of risk when I made a simple point-of-sale transaction with Therma.” Gautam Srivastava, a Brandon University professor of computer science who specializes in cybersecurity, said it’s fairly normal for companies to keep the amount of customer information that Thermea did for situations involving marketing and repeat customers.

He said these kinds of data breaches are happening more often, since businesses are prioritizing ease of use.  While paying by the tap of a credit card or phone is speedy and efficient, those practices are not always compatible with good security, Srivastava said. “If you’re looking to encrypt and then decrypt information, there’s time lags there, and so a lot of systems that are built for ease of use find those sorts of things compromised.”

He said Thermea isn’t entirely to blame for the data breach, as malicious attackers often test a number of companies within a specific vicinity in search of system weaknesses. Thermea is a well-loved establishment in Winnipeg, he said, so they won’t necessarily lose all of their business because of the data breach. There are steps Groupe Nordik can take to win back customers, such as keeping their security measures updated and ensuring customers that their information is safe, he said.

Consumers can protect themselves by changing the pins of their bank and credit cards periodically and using strong passwords for their emails, as well as multi-factor authentication or biometric verifications such as fingerprint technology. But at the end of the day, it’s a matter of trust, Srivastava said. “Their brand is going to take a hit for a little bit, but they can take steps in the future starting now to kind of win back some of that trust,” he said.

“When trust is broken in anything, it takes time to win back that trust, and sometimes you never do.” In a statement to Radio-Canada, Groupe Nordik said they hired a third-party cybersecurity firm to investigate the breach and will continue to work with them in the future. “We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the statement said.

Robins said the breach came at an unfortunate time for him and his family, as they lost their house to a fire in January 2022. He said Thermea is a bit of a local institution for Winnipeg and surrounding areas. “I’ve been there many times — really enjoy their service. It’s a real treat to be able to go to a spa.”

But Robins said Thermea will have to win his business back.

“I think giving an email notification that a breach happened is a good first step and I’m grateful for that credit where credit is due,” he said.

“But frankly given the — in my estimation — very weak data practices that this company has been engaged in, I really don’t want to go back to Thermea and jeopardize my data again with that firm.”

Tags:

bargainmax listed on couponmatrix.ukflexible-autos listed on couponmatrix.ukiherb listed on couponmatrix.uksoftwarepal listed on couponmatrix.ukthreadbare listed on couponmatrix.ukyoins listed on couponmatrix.uk
bargainmax listed on couponmatrix.ukAllow BargainMax to keep your kids entertained for less with its unbeatable range of awesome yet affordable toys, games and playsets! Reach for a Bargain Max discount code from us to banish boredom from raising its head without breaking the bank. From action figures and arts supplies to construction toys and crafts, you’ll find something to suit all tastes in the BargainMax range - look out for your favourite TV and film characters too!
flexible-autos listed on couponmatrix.ukFlexible Autos is a leading car rental company committed to providing customers with convenience, quality and affordability. With a wide selection of vehicles available for rental in multiple locations around the world, Flexible Autos makes it easy to find the perfect car for your journey. To make it even easier, Flexible Autos also offers discount codes on their website that can be used when booking your vehicle online or at one of their outlets. Whether you're traveling long or short distances, Flexible Autos’ discount codes will help you save money while still enjoying premium quality service. Book your vehicle with a Flexible Autos voucher today and start saving!
iherb listed on couponmatrix.ukiHerb is an affordable health, beauty and supplement retailer that offers rock-bottom prices and a super-generous rewards scheme. Stocking all your favourites like Aveeno, Garden of Life, K-Beauty and Simply Organic, at iHerb you can feel your best for less – make sure you bag an iHerb discount code from us for rock-bottom prices! From face masks and makeup to probiotics and plant-based proteins, shop at iHerb to start feeling great from the inside out.
softwarepal listed on couponmatrix.ukSoftwarePal is your trusted destination for discounted download software like Windows 10, Microsoft Office and Kapersky. SoftwarePal not only offers competitive prices but also boasts a 24/7, 365-day online tech support team recognised as the best by their customers. With skilled problem solvers and hassle-free remote assistance, SoftwarePal takes the stress out of software-related challenges. Whether you need Windows 10 or expert advice, SoftwarePal is here to save you money while providing unmatched service. Explore exclusive SoftwarePal discount codes on Groupon today for a seamless tech experience!
threadbare listed on couponmatrix.ukWhether you’re searching for a snazzy dress for a summer BBQ or a jacket for the new school term, Threadbare is the place to find top-quality men, women and children’s clothing at affordable prices. Savvy shoppers will find the best Threadbare discount codes and top sale picks on this page, as well as an abundance of discounts for students and key workers. Make Groupon your first port of call and you can expect to save more money on Threadbare clothing for parties, days out and everyday wear, too!
yoins listed on couponmatrix.ukAre you looking to revamp your wardrobe in the latest styles without using up all your savings? Then look no further than Yoins who have the lowdown on cutting edge fashion for your pleasure! With a Yoins discount code on us you’ll be dying to get your hands on these dresses, sweaters, shoes and more. Check out the ‘New In’ section to see what’s fresh off the runway or the sale to see what you can get for less.