Customers of Winnipeg's Thermea spa alarmed after notification of …

The parent company of a popular luxury spa in Winnipeg is in hot water after a data breach opened the door for hackers to access a variety of private information from customers. This week, customers who purchased gift certificates from Thermea spa between early November and late February were told in an email that their credit card information may have been compromised, alongside their full names, phone numbers and email and street addresses. Groupe Nordik, the parent company of the spa, said that they learned of the breach in late February, shut down the gift certificate system and hired a third-party firm to investigate.

“We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the email said. Gift certificates that have not been redeemed are still valid, Groupe Nordik said. The appropriate authorities have been notified of the breach and affected customers were encouraged to keep an eye out for any suspicious activity.

Unencrypted credit card info

“What the email didn’t include, though, was any guidance around the risk of identity theft that they have now incurred for me,” John Robins told Radio-Canada in a Wednesday interview.

Robins purchased a Thermea gift certificate with his credit card at a Polo Park kiosk around Christmastime, he said. He has submitted a complaint about the breach to the Office of the Privacy Commissioner. He’s not aware of any fraudulent charges on his credit card, but he’s going through his records again.

Robins was surprised to learn that Thermea saved his credit card information for any amount of time. “I certainly did not think that I was putting myself in that level of risk when I made a simple point-of-sale transaction with Therma.” Gautam Srivastava, a Brandon University professor of computer science who specializes in cybersecurity, said it’s fairly normal for companies to keep the amount of customer information that Thermea did for situations involving marketing and repeat customers.

He said these kinds of data breaches are happening more often, since businesses are prioritizing ease of use.  While paying by the tap of a credit card or phone is speedy and efficient, those practices are not always compatible with good security, Srivastava said. “If you’re looking to encrypt and then decrypt information, there’s time lags there, and so a lot of systems that are built for ease of use find those sorts of things compromised.”

He said Thermea isn’t entirely to blame for the data breach, as malicious attackers often test a number of companies within a specific vicinity in search of system weaknesses. Thermea is a well-loved establishment in Winnipeg, he said, so they won’t necessarily lose all of their business because of the data breach. There are steps Groupe Nordik can take to win back customers, such as keeping their security measures updated and ensuring customers that their information is safe, he said.

Consumers can protect themselves by changing the pins of their bank and credit cards periodically and using strong passwords for their emails, as well as multi-factor authentication or biometric verifications such as fingerprint technology. But at the end of the day, it’s a matter of trust, Srivastava said. “Their brand is going to take a hit for a little bit, but they can take steps in the future starting now to kind of win back some of that trust,” he said.

“When trust is broken in anything, it takes time to win back that trust, and sometimes you never do.” In a statement to Radio-Canada, Groupe Nordik said they hired a third-party cybersecurity firm to investigate the breach and will continue to work with them in the future. “We have since enhanced security measures on all Groupe Nordik systems, including the gift certificate system, and will continue to work with the cyber security firm to maximize the protection of our clients’ data,” the statement said.

Robins said the breach came at an unfortunate time for him and his family, as they lost their house to a fire in January 2022. He said Thermea is a bit of a local institution for Winnipeg and surrounding areas. “I’ve been there many times — really enjoy their service. It’s a real treat to be able to go to a spa.”

But Robins said Thermea will have to win his business back.

“I think giving an email notification that a breach happened is a good first step and I’m grateful for that credit where credit is due,” he said.

“But frankly given the — in my estimation — very weak data practices that this company has been engaged in, I really don’t want to go back to Thermea and jeopardize my data again with that firm.”

Tags:

chiltern-railways listed on couponmatrix.ukholiday-autos listed on couponmatrix.ukleonardo-hotels listed on couponmatrix.uklondon-eye listed on couponmatrix.ukthe-sunday-times-wine-club listed on couponmatrix.ukvillage-gym listed on couponmatrix.uk
chiltern-railways listed on couponmatrix.ukCommuters of the West Midlands rejoice because Chiltern Railways have got you covered and endeavour to get you from point A to B and back again as quickly and stress-free as possible. Whether you’re from Warwickshire, Buckinghamshire or Oxfordshire, let a Chiltern Railways discount code take you further for far less. Renowned for their punctuality and consistent performance, you’ll have great difficulty finding a more reliable and trustworthy train provider in the UK.
holiday-autos listed on couponmatrix.ukCompare over 1,500 car hire suppliers in over 30,000 locations worldwide to find the best car for you, wherever you are, wherever you’re going. With your Holiday Autos discount code, you never need to be without transport again, or pay an arm and a leg for it. The Holiday Autos' top car hire comparison service looks at some of the biggest names in car hire so you can spend less time finding a great deal on your car hire, and more time getting excited about your trip.
leonardo-hotels listed on couponmatrix.ukWherever your European travels take you, know that there’s always a warm welcome awaiting you at Leonardo Hotels. With over 80 different hotels spread across the UK and the continent beyond, a Leonardo Hotels discount code can snag savings on overnights stays from Amsterdam to Venice. You can’t put a price on a good night’s sleep but you know it’s guaranteed at a competitive price with Leonardo Hotels.
london-eye listed on couponmatrix.ukStanding at a mind-boggling one hundred and thirty-five metres, the London Eye has offered guests a brand new perspective of London since it opened to usher in the millennium. Step into a pod, sail into the sky and enjoy a panoramic view of the River Thames, the beautiful sprawling streets and London’s best landmarks. As London’s very own equivalent to the Eiffel Tower, booking London Eye tickets should be on every tourist’s bucket list – get them online to save money and skip the queue! You can take the trip for less with a London Eye discount code and treat your family and friends to the best views in London. Whether you want general tickets, London Eye and Madame Tussauds tickets, or a VIP champagne experience, we’re here to help you save money on the experiences you love.
the-sunday-times-wine-club listed on couponmatrix.ukThe Sunday Times Wine Club is one of the UK's leading wine clubs, and they're currently offering some amazing deals on vintages across the globe. Take advantage of the newest The Sunday Times Wine Club introductory offers to get an exclusive discount on your first purchase, with limited time offers frequently cutting the cost of a second box when you sign up for a longer subscription. Whether you're a wine aficionado or a casual drinker, The Sunday Times Wine Club has something for everyone. At Groupon, we understand that saving money is important to our customers. That's why we work hard to find the best The Sunday Times Wine Club offers and vouchers, so you can get the wines you want at a price that suits your budget. Don’t forget to sign up for to the brand newsletter either to receive all the latest news and seasonal promotions that’ll bulk out your wine rack on a budget. The Sunday Times Wine Club offers a wide variety of high-quality wines at competitive prices. One of the top-performing vintages is the 2016 Châteauneuf-du-Pape, which is a beautiful red wine from the Rhône Valley in France. This wine is full-bodied and packed with flavors of blackberry, cherry, and spice – so use The Sunday Times Wine Club discount code to get an exclusive price on this beautiful dinner pairing. It's perfect for drinking now or for cellaring, making it ideal for every kind of connoisseur.
village-gym listed on couponmatrix.ukWhether you’re a full-on fitness fanatic or just starting out on your journey to better health, you’ll love the latest fitness equipment, heating swimming pools, saunas, steam rooms and whirlpools at every Village Gym. Never let costs put you off again - boost your bank balance with a Village Gym promo code and discover a new, healthier you in no time! At Village Gym, it’s always fun to get fit.