I had an employee provide a resignation before I was on site. The employee then unplugged a desktop computer and left the premises with it. The computer contained pricing data, customer data, email communications, login credentials to several important websites, login info to vendor websites.
I filed a police report and the police were able to recover the computer, however the data on the machine was wiped or the drive was replaced.
What should I do?
This. Having customer’s PII exposed is a big issue and if not reported, could end up landing you in some shit. I’d report it to my insurance and see what their advice is.