A pair of privacy watchdogs are launching an investigation after a data breach at Desjardins Group that affected nearly three million members.

The Office of the Privacy Commissioner of Canada and its Quebec equivalent say the probes will examine whether the Desjardins was in compliance with federal and provincial laws around personal information protection.

Story continues below

READ MORE: Desjardins unveils new measures to help members who were victims of data theft

The financial co-operative operates mainly in Quebec, where it is subject to provincial law, but falls under federal privacy law for its activities elsewhere in Canada.

Desjardins was already facing legal fallout from the breach affecting 2.9 million members.

READ MORE: Desjardins data breach affecting 2.9 million members leads to class-action lawsuit

A pair of class-action lawsuits were initiated last month that allege the organization either violated its members’ privacy rights or showed negligence in safeguarding their personal and financial information.

The data includes social insurance numbers, names and addresses, and affects 2.7 million individual members and 173,000 business members.

WATCH BELOW: Canada struggling for experts in war against hackers

Read More…