By David Layfield on April 17th, 2015
HAPPY said in a notice, posted to all housing authority waiting list portals they manage, they "detected an unusual number of attempts to probe our system. Because of this unusual amount of activity, we chose to take our systems off-line so that we could thoroughly scan them. We hired a security consulting firm to conduct an in-depth scan of our systems so we can identify and address any issues."
1. When will the waiting list portal be back up?
2. We know that Stamford, CT (Charter Oak Communities) has extended their closing due to the outage. Rockford, Illinois will be opening on Monday, April 6. It is expected that the portal will be back online by then?
3. If someone applied immediately prior to the outage, will they need to reapply once it's back up?
4. On waitlistcheck.com, on 3/30/15 you reported that there was recently a large number of attempts to "probe" your system and go on to say you "hired a security consulting firm to conduct an in-depth scan of our systems so we can identify and address any issues".
Given recent data breaches like Target, Home Depot and others, and the fact that every applicant that uses your system submits their Social Security number and those of their family, our users are very concerned about identity theft and privacy.
Were any of these "probes" successful? Why did you decide to hire an outside consulting firm instead of using in-house data security staff? Has the consulting firm found any thing to be concerned about? Has the consulting firm said you are in the clear? Will you be contacting individual users regarding any possible risks to their privacy? If it is confirmed that a breach did take place, due you have a plan on how to handle applicant privacy and data security?
"We expect to post some Frequently Asked Questions on our website in the next few hours. Several of the answers will address your questions."As of this morning, the HAPPY Software website was still down and we could not find a document addressing these questions. However, early this morning, the WaitListCheck website (separate from the HAPPY Software site) came back online and seems to be operating normally. Given all the security breaches by large companies lately like Target, Home Depot and Sony Pictures as well as the recent Lubbock Texas Housing Authority's publishing of 1,100 Section 8 applicant's social security numbers online, people applying for assistance online should be vigilant when providing personal info. Almost every Section 8 application (no matter the software vendor) and specifically HAPPY Software's WaitListCheck, requires the submission of a Social Security number for the Head of Household and every member of the household including children.
 |
| The HAPPY Software Online Section 8 Application requires the housing assistance applicant to provide their Social Security number and that of each family member. |
 |
| Sections 7 and 9 of the HAPPY Software, Inc. (WaitListCheck.com) Terms of Use as published on April 2, 2015 |
Under no circumstances shall HAPPY Software, Inc. be liable for any damages suffered by you, including any incidental, special or consequential damages (such as lost funds, damages for business interruption, or loss of information, programs or other data) that result from the use of this Web site, breach of security associated with the transmission of information through the Internet or inability to access this Web site.Additionally, in Section 9 it reads:
Data transmitted to and from client Web sites is encrypted for the user's protection. However, the security of information transmitted through the Internet can never be guaranteed. HAPPY Software, Inc. is not responsible for any interception or interruption of any communications through the Internet or for changes to or losses of data.The most concerning legal language in the Terms of Use is "Under no circumstances shall HAPPY Software, Inc. be liable for any damages suffered by you...that result from the use of this Web site." That is very broad language that seems to imply that HAPPY is not responsible for damages suffered by a housing assistance applicant, even if the loss was due to HAPPY's action or inaction.
Don’t miss your window to apply!
If you can't apply now, write down when the waiting list closes. Many waiting lists are open only for a short time.Josie Shivers says:
"Affordable Housing Online is a very helpful website. I was able to put it in a Section 8 application, and received a letter that I was chosen to be on a waiting list!"