A Warwickshire-based company has committed to taking action to protect personal data, following a breach of the Data Protection Act (DPA). The breach occurred when a system used by Pharmacyrepublic Limited to record the medication handed out to around 2000 patients was stolen from one of its premises, the Information Commissioner’s Office (ICO) said today….
Month: March 2012
GA: Ex-employee sought for stolen records
It seems like only this morning how we were saying that “data breach” isn’t a dirty word anymore. Oh wait, it was this morning. Here’s another case where someone either missed the memo or is so embarrassed/concern about fallout from the breach that their identity has not been disclosed in this report by Aspen Newspapers…
3rd doctor’s office targeted for laptop theft
Ah, so this breach was politically motivated. Tony Thomas reports: Some area OB-GYNs say they are being harassed after speaking out against a controversial bill being considered at the state Capitol. Dr. Richard Zane of the Atlanta Women’s Health Group said his office and two others have been broken into in the days following a…
MA: Property Management Firm to Pay $15,000 in Civil Penalties Following Data Breach – But Why?
A follow-up to a breach reported on this blog (but not in the mainstream media) in November 2011: A property management firm will pay $15,000 in civil penalties following the theft of a laptop containing the personal information of over 600 Massachusetts residents, Attorney General Martha Coakley announced today. “It is incredibly important that businesses…
You can do everything right, but still incur penalties – lessons learned from BCBS of Tennessee
Deborah Johnson Pyles writes: One of the lessons from the recent settlement agreement entered into by Blue Cross/Blue Shield of Tennessee with the Department of Health and Human Services is that doing everything right may not be enough. The settlement concerned alleged violations of Health Insurance Portability and Accountability Act privacy and security laws arising…
Why ‘data breach’ isn’t a dirty word anymore
Elinor Mills has a round-up of quotes from multiple sources that all suggest that having a data breach generally isn’t fatal to a business – although there are, of course, exceptions. Not surprisingly, my favorite quote is from Adam Shostack: “The reason we’re struggling as an industry is that we cover up the failures,” said…