Customers of Winnipeg's Thermea spa alarmed after notification of …

The parent company of a popular luxury spa in Winnipeg is in hot water after a data breach opened the door for hackers to access a variety of private information from customers. This week, customers who purchased gift certificates from Thermea spa between early November and late February were told in an email that their credit card information may have been compromised, alongside their full names, phone numbers and email and street addresses. Groupe Nordik, the parent company of the spa, said that they learned of the breach in late February, shut down the gift certificate system and hired a third-party firm to investigate.

“We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the email said. Gift certificates that have not been redeemed are still valid, Groupe Nordik said. The appropriate authorities have been notified of the breach and affected customers were encouraged to keep an eye out for any suspicious activity.

Unencrypted credit card info

“What the email didn’t include, though, was any guidance around the risk of identity theft that they have now incurred for me,” John Robins told Radio-Canada in a Wednesday interview.

Robins purchased a Thermea gift certificate with his credit card at a Polo Park kiosk around Christmastime, he said. He has submitted a complaint about the breach to the Office of the Privacy Commissioner. He’s not aware of any fraudulent charges on his credit card, but he’s going through his records again.

Robins was surprised to learn that Thermea saved his credit card information for any amount of time. “I certainly did not think that I was putting myself in that level of risk when I made a simple point-of-sale transaction with Therma.” Gautam Srivastava, a Brandon University professor of computer science who specializes in cybersecurity, said it’s fairly normal for companies to keep the amount of customer information that Thermea did for situations involving marketing and repeat customers.

He said these kinds of data breaches are happening more often, since businesses are prioritizing ease of use.  While paying by the tap of a credit card or phone is speedy and efficient, those practices are not always compatible with good security, Srivastava said. “If you’re looking to encrypt and then decrypt information, there’s time lags there, and so a lot of systems that are built for ease of use find those sorts of things compromised.”

He said Thermea isn’t entirely to blame for the data breach, as malicious attackers often test a number of companies within a specific vicinity in search of system weaknesses. Thermea is a well-loved establishment in Winnipeg, he said, so they won’t necessarily lose all of their business because of the data breach. There are steps Groupe Nordik can take to win back customers, such as keeping their security measures updated and ensuring customers that their information is safe, he said.

Consumers can protect themselves by changing the pins of their bank and credit cards periodically and using strong passwords for their emails, as well as multi-factor authentication or biometric verifications such as fingerprint technology. But at the end of the day, it’s a matter of trust, Srivastava said. “Their brand is going to take a hit for a little bit, but they can take steps in the future starting now to kind of win back some of that trust,” he said.

“When trust is broken in anything, it takes time to win back that trust, and sometimes you never do.” In a statement to Radio-Canada, Groupe Nordik said they hired a third-party cybersecurity firm to investigate the breach and will continue to work with them in the future. “We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the statement said.

Robins said the breach came at an unfortunate time for him and his family, as they lost their house to a fire in January 2022. He said Thermea is a bit of a local institution for Winnipeg and surrounding areas. “I’ve been there many times — really enjoy their service. It’s a real treat to be able to go to a spa.”

But Robins said Thermea will have to win his business back.

“I think giving an email notification that a breach happened is a good first step and I’m grateful for that credit where credit is due,” he said.

“But frankly given the — in my estimation — very weak data practices that this company has been engaged in, I really don’t want to go back to Thermea and jeopardize my data again with that firm.”

Tags:

gigaclear listed on couponmatrix.ukhearing-direct listed on couponmatrix.ukpedalsure listed on couponmatrix.ukthe-gym-group listed on couponmatrix.ukvirgin-holidays listed on couponmatrix.ukwoolovers listed on couponmatrix.uk
gigaclear listed on couponmatrix.ukWith an aim to establish strong connections across the more isolated areas of the country, Gigaclear provides strong and stable broadband for businesses and households in the most rural locations. Whether you reside deep in the Somerset countryside or along the slopes of the Peak District, Gigclear voucher codes will ensure you get a great price on your monthly package. With the internet becoming ever more essential, ensure your country home gets the broadband strength it deserves with Gigaclear. Like any good network provider, Gigaclear run special promotions throughout the year for bargain-hungry customers to enjoy the same quality connection whilst paying less for the privilege. There are multiple options for both home and business broadband at Gigaclear, with separate speeds to suit your usage. Wait for the right deal and you can secure quicker speeds without paying a penny more than you would for a lesser connection during a non-sale period. As a brand built around providing dedicated networks for countryside customers, you know to expect both quality service and a stellar connection when you opt for Gigaclear broadband. Be it for streaming, browsing or gaming, a Gigaclear discount code is all that’s required to get the speed you need for a fraction of the price. Once you’ve booked a package, some Gigaclear experts will arrive onsite to integrate a custom network line – giving you optimal connection with minimal stress.
hearing-direct listed on couponmatrix.ukOur selection of Hearing Direct coupons can help you save on items designed to help make daily life easier when dealing with hearing loss. Various hearing aids are available alongside the likes of amplified phones, ear hygiene products, loud alarm clocks and assistive listening devices. Products are also offered to help customers listen to the TV, catch doorbell chimes, protect their hearing or get relief from tinnitus. Designed with the emphasis on accessibility and ease of use, big-buttoned TV remotes and computer keyboards are available along with watches and various alerting devices. So if you're in the market for items to make life a little more manageable, have a look at Groupon's Hearing Direct promo codes to see how you can save. Drawing on the collective experience of a team boasting years in and around hearing aid manufacturing, Hearing Direct was set up around the simple concept of making hearing aids available to all at affordable prices. The team used their insider knowledge of the true value of the micro-engineered digital devices to help them remove various associated costs and pass the savings on to customers, with various in the ear (ITE) and behind the ear (BTE) options available. Every item listed on the site comes with a 30-day no-hassle money back guarantee, as well as a 12-month manufacturer warranty, with all hearing aids coming with a packet of batteries included. Their customer services team are on-hand to help offer advice and answer questions on products or services, while the site itself provides a host of guides on everything from hearing checks to buying a hearing aid online, selecting an appropriate amplified device, and more. Once an appropriate device has been found, our latest Hearing Direct coupon codes can help you bag some big savings. So if you're looking for something to make hearing the television a little easier, a new hearing aid or accessories, or even a clearer watch, remember to peruse our collection of Hearing Direct coupons before you buy.
pedalsure listed on couponmatrix.ukKeep your two wheels protected with Pedalsure, the bike insurance company that excels in comprehensive cover. Whether you’re worried about theft, damage or injury, rest assured a Pedalsure discount code will protect you from all these and more at a reasonable price. With competitive quotes offered in accordance with both the value of your bike and your age, Pedalsure provides quotes for every kind of customer – be them a regular commuter or fans of a country bike hike. At Groupon, we believe that being able to save money should be easy and accessible to everyone. That's why we're always on the lookout for Pedalsure discount codes so you can get the best possible deal on their products and services. We know that bike insurance can be expensive, so we want to help you stretch your hard-earned money as far as possible. Whether you're looking for comprehensive cover or just a few extra dollars off your premium, we'll do our best to find a Pedalsure discount code that meets your needs. Those who consider their bike a third arm will want to ensure its protected from any worst-case scenario, wherever you travel. That’s why Pedalsure bike insurance is such a great choice for regular cyclists, as their policies protect your bike both at and away from home. Make the most of the latest Pedalsure discount and can enjoy monthly payments for a fraction of the price. With the ability to cover up to five bikes in a single policy, you can protect every two-wheeler in the family with Pedalsure.
the-gym-group listed on couponmatrix.ukThe Gym Group works hard to create a welcoming space for all fitness abilities – whether you’re a beginner, a gym enthusiast or somewhere in between. There are hundreds of Gym Group gyms across the UK with 24/7 access, so you can drop in when you like and make your workout work for you! Whether you prefer cardio classes or hitting the weights, we’ve got plenty of the Gym Group promo codes to help you save on membership and meet your fitness goals.
virgin-holidays listed on couponmatrix.ukPlanning an epic vacation or a romantic weekend away? Virgin Holidays is your go-to for the holiday of a lifetime! The team of experts have done all of the hard work for you, so you can sit back and relax - and with a Virgin Holidays discount code from us, your trip doesn’t have to come with a hefty price tag. Whether you’re after an Antipodean escape, Carribean cruise or anything in between, Virgin takes the hassle out of holidays.
woolovers listed on couponmatrix.ukWoolOvers was founded in 1989 and began life trading at equestrian and country shows around the UK. Using only the finest British lambswool and other top-quality textiles, WoolOvers is now a global brand, selling jumpers, cardigans, polo necks, and shawls all over the world. Pick up your WoolOvers discount code to shop the range of stunning apparel for men and women for less. With so much choice, you’re sure to find something to suit your style and keep you warm all year round.