Security Notification
April 18, 2008

SECURITY BREACH—PERSONAL RECORDS

A laptop computer that belonged to a consultant at SunGard Higher Education, a software company that provides IT services to St. John Fisher College, was stolen on March 13, 2008. The theft was immediately reported to law enforcement, but the laptop has not been recovered. The College learned of the theft on Friday, April 11, 2008, and notified the office of NYS Attorney General Andrew Cuomo as required by law.

The laptop, which was password-protected, contained unencrypted files with personally identifiable data (name, Social Security number, and date of birth) of some St. John Fisher College prospective and enrolled students. The College has notified everyone whose name and information was listed in the file of the stolen laptop. Although we believe the laptop was stolen for the value of the hardware rather than the data itself, we recommend that those affected take steps to protect themselves from the possible misuse of their personal information.

If you received a letter from the College about this incident, you may call the Laptop Theft Information Center at (866) 520-2408. In addition, please refer to the following detailed information on this website:

1. Frequently-Asked Questions
2. Protecting Your Credit
3. Resources

We take this theft and the protection of confidential information very seriously. Because identity crimes are on the rise, we recommend that you review the precautionary steps outlined on this website to help guard against potential identity theft

CAUTION

In similar cases at other institutions, people have reportedly been contacted by individuals claiming to represent the institution and who then proceed to ask for personal information, including social security numbers and/or credit card information. Please be aware that St. John Fisher College will only contact you with information regarding steps you should take to prevent possible fraud or identity theft. We will not ask for your full Social Security number or for credit card or bank information. We recommend that you not release personal information in response to any such contacts that you have not initiated.