In late 2016, the Australian Red Cross Blood Service made headlines for all the wrong reasons after it emerged that the personal information of more than half a million blood donors had somehow found its way onto a publicly-facing website.
It was discovered that a file containing donor information, including names, gender, addresses, blood type, and phone numbers, had been placed in an non-secure environment by a third party technology partner that had developed and maintained the Blood Service’s website.
