A Message From Walgreens

A friend of mine recently received the following email from Walgreens:

December 10, 2010
Dear Valued Customer,

We recently became aware of unauthorized access to an email list of customers who receive special offers and newsletters from us. As a result, it is possible you may have received some spam email messages asking you to go to another site and enter personal data. We are sorry this has taken place and for any inconvenience to you.

We want to assure you that the only information that was obtained was your email address. Your prescription information, account and any other personally identifiable information were not at risk because such data is not contained in the email system, and no access was gained to Walgreens consumer data systems.

We realize you previously unsubscribed from promotional emails from Walgreens, and that will continue. As a company, we absolutely believe that all customer relationships must be built on trust. That is why we believe it is important to inform you of this incident. Online security experts have reported an increase in attacks on email systems, and therefore we have voluntarily contacted the appropriate authorities and are working with them regarding this incident.

We encourage you to continue to be aware of increasingly common email scams that may use your email address to contact you and ask for personal or sensitive information. Always be cautious when opening links or attachments from unsolicited third parties. Also know that Walgreens will not send you emails asking for your credit card number, social security number or other personally identifiable information. So if ever asked for this information, you can be confident it is not from Walgreens.

If you have any questions regarding this issue, please contact us at 1-888-980-0963. We take your privacy very seriously, and we will continue to work diligently to protect your personal information.

Walgreens Customer Service Team


Dear Valued Former Customer Who Doesnít Want to Hear From Us,

We know you have already unsubscribed from our mailing lists. You may have thought that we deleted your email address, but in fact we decided to keep your email in our databases anyway. Now it was stolen. Sucks to be you, because now youíll probably get more spam and scam mail. We reported the breach to the police, knowing full well that they donít care one little bit, but we at least hope do some PR damage control by looking serious about this.


P.S. We still donít plan to actually delete your email address from our systems and eliminate the risk of a future breach.

Well, at least I have to give them points for owning up to the breach. Many companies wouldn’t even do that much.

  1. No comments yet.
(will not be published)