Despite a recent ruling making it harder for plaintiffs to get statutory damages under the California Medical Information Act, lawyers still seem to be eager to file class action lawsuits against California hospitals. Given California’s stricter breach notification requirements, I can almost see why. See this press release recruiting potential plaintiffs or class members as an example of sharks circling in the water should you have a breach. And then ask yourselves again whether maybe it’s time to start encrypting PHI and doing more to prevent laptops with PHI from being stolen from employees’ unattended vehicles…
The Office of Inadequate Security
