PROVO, Utah. The Brigham Young University’s Counseling and Career Center appears to have exposed personal information of 89 BYU Medical school Applicants by placing their names and personal information on its website. The information, contained in an excel file named “MD-DO-Stats-2006.xls,” contained full names, last three digits of social security numbers, gender, economic disadvantaged status, academic majors, race, MCAT scores, an indication of whether the applicant was accepted or rejected, and other academic information.
At least some of the information posted online is covered by the Family Educational Rights and Privacy Act (FERPA). When it was discovered by the Liberty Coalition in November, 2007, the original file had already been deleted from the BYU server, but part of the file remained in Google’s Cache until early December, 2007.
Student applicants from the following universities were affected:
- Case Western Reserve University School of Medicine
- Dartmouth Medical School
- Drexel University College of Medicine
- East TN State U., James H. Quillen Coll. of Med.
- Eastern Virginia Medical School
- Johns Hopkins University School of Medicine
- Loyola University Chicago Stritch School of Medicine
You can confirm whether you were affected by this breach by searching for your name at www.ssnbreach.org.
About SSNBreach.org
SSNBreach.org is a free online directory of victims of personal information breach, that tells you whether your personal information has been exposed.
SSNBreach.org does NOT contain sensitive data, such as Social Security Numbers (SSN), Birth Dates, Addresses, and the like. Consequently, there is no way to search for your SSN or any other type of sensitive data on SSNBreach.org. Instead of storing sensitive information, we document what information was exposed, and the situation surrounding the breach. This information allows victims to further investigate, take action, or correct any harm from the exposure.