Nice of them to notify their customers, but not the people whose data has been exposed. "Have I Been Pwned" alerted me.
Thanks to haveibeenpwned.com for the heads up.
Is this some kind of sales platform or what? It's so tiresome to have your email become the town bike the moment any SaaS gets their hands on it.
Unlikely they're not active on HN. Maybe they could elaborate on how this happened.
Wonder how hard GDPR fines are going to hit them.
also only notified by haveibeenpwned
Email them and say that you are making a GDPR subject access request. They have 30 days to respond.
In so many of these breaches we're seeing cases where these analytics firms have data scraped from networks that is well in violation of terms - not mistakenly, but wanton disregard for data usage policies of those networks.
Why is nothing ever done about that?