🌋 USPS Leaks Customer Data to Meta, Snap, and LinkedIn
posted 18 Jul 2024
The United States Postal Service (USPS) inadvertently shared email addresses from its Informed Delivery service with companies such as Meta, Snap, and LinkedIn. This happened via a tracking tool meant for analyzing website visits.
USPS officials claimed they were unaware of the issue and confirmed that the data leak was closed after the investigation. The full scope of the problem is still unclear, considering more than 62 million people used Informed Delivery actively as of March 2024.
The Postal Service does not sell or provide any personal information that is collected from this analytics platform to any third party, and we were unaware of any configuration of the platform that collected personal information from the URL and that shared it without our knowledge with social mediastated USPS spokesperson Jim McKean.
Apart from email addresses, the tracking code gathered technical details about users' computers and browsers in a pseudonymized manner (where owners' names are encrypted). Analysts suggest this data could still be valuable to advertisers.
USPS has not clarified whether it will request the deletion of confidential data from these tech companies. The USPS Office of Inspector General (the governmental oversight authority) has not yet commented on the matter.