Gerry Higgins writes: A prominent CIO of a regional hospital system encountered the limitations of HIPAA and so-called “Protected Health Information (PHI)” when her boss fired her after a short medical leave of absence. After years working without taking vacation, a family catastrophe that affected her health prompted her to take a medical leave of…
Month: October 2010
HIPAA, Twitter, and the Siren's Call
After my dismay at how a breach seemed to be casually revealed on Twitter last weekend, I thought I’d keep an eye out for situations in which use of social media might raise the specter of the HIPAA privacy rule. In the example below, I do not think that the twitterer violated the rule in any particular…
UK doctors’ personal data found on used hard drive sold online
There have been many instances in the U.S. of personal data showing up on equipment sold at online and offline auctions. Once such case in the U.K. involved doctors’ data and the company responsible for the data, Healthcare Locums Plc (HCL), a UK specialist healthcare recruitment agency, has now been found in breach of the Data Protection Act…
Woman gets 18 months for ID theft for misusing her kids’ identities
The Identity Theft Resource Center and Privacy Rights Clearinghouse have both been active in trying to highlight the growing risks of children having their identity information misused for fraud. In too many cases, the perpetrators are their own parents. Although I generally don’t report all these cases on this blog, here’s a case in Maryland…
TN: DCS building burglarized, confidential information found
Nate Morabito reports: Johnson City police are looking for the person who ransacked the Plymouth Road Department of Children’s Services building this weekend. According to the police report, officers believe a juvenile likely broke into the building to get the title to his car back. According to the report, that title was stripped from him after…
If your data in the cloud got sick, could you make a virtual housecall?
Gienna Shaw has an article on HealthLeaders Media about healthcare entities using cloud services. She includes a number of helpful examples of how cloud services can be a boon to entities, but unfortunately, there is no real discussion of the security and privacy risks in the article. The potential problems in using cloud services are…