What is the problem?
It is unclear how InMotion could arrive at the conclusion that their security measures follow industry standards. Protecting user data from interception in transit by using encryption is a basic precaution that is widely understood.
Prior to public disclosure, notification about any privacy or security issues discovered were sent by email to the operator of this website on 4th August 2018, using either an email address publicly discoverable on the site, or the RFC 2142 standards compliant address "webmaster@..." if no public email address was provided.
At time of posting the issue had not yet been resolved.