On May 10, Baltimore-based Alliance Inc. notified the Maryland Attorney General’s Office that a laptop stolen from an employee’s car on May 3 contained client information in password-protected files.
Alliance is a not-for-profit that services clients with disabilities and mental health needs. Most of the affected clients are transients who either drop in or who are seen at pre-arranged locations by case managers. The information included clients’ names, addresses, SSN, and diagnoses.
Given that 22 Maryland residents were affected, we probably will not see this incident on HHS’s web site, but it was most likely reported to them as an under-500 incident, as they report that their notification was written to comply with HITECH requirements.