Identity theft is a major problem and most of us have begun to realize it and take appropriate action to protect ourselves. But there are those who do "everything right" and still end up victims. They are left with the question of "What did I miss?". the answer is nothing. You have indeed done everything humanly possible. You shred personal information, you stay on top of your billing cycles and credit and you are careful about giving out your information. It's not your fault. It is the fault of someone you've done business with.
According to the Privacy Rights Clearinghouse, 167,706,372 personal records were compromised due to security breaches. The latest reported breach comes from the University of Akron in Akron, OH. A microfilm containing the information of 1,200 alumni is missing. Security breaches run the gamut from missing laptops and thumb drives, accidental posting to the internet all the way down to paper files thrown in dumpsters. When this happens the information contained in those records are put at risk.
Slowly the Federal Government is getting involved through legislation and reinterpretation of existing law to place liability on businesses to keep information secure but it is a slow process. There is no uniform reporting required and in some states businesses are not required to tell you they have lost your information. This is why reputable identity restoration services will not guarantee you that your identity will not be stolen. Considering the average American is listed in 50 different databases, there is no way to control the security of your information.
All you can do is your part and prepare for the possibility that your information will be lost and you will be at risk