Rebecca Harrington reports: The Minnesota Department of Health would regain broad authority to test and store blood samples from newborn babies under legislation that has pitted medical privacy activists against advocates of public health and medical research. The bill, which has passed key committees in the House and Senate, would reverse the direction of recent…
Month: March 2014
Ca: Privacy watchdog investigates breach in residential school survivors’ claims
Susanna Moss reports: Canada’s privacy watchdog is investigating a possible breach of personal information belonging to residential school survivors, after an adjudicator working for the agency handling their compensation claims filed a police report citing blackmail. The Indian Residential Schools Adjudication Secretariat is the administrative body that manages the claims made by residential school survivors….
CN: Website security loopholes force Ctrip to stop saving user CCV info
Si Huan reports: Ctrip will stop saving users’ credit card verification (CCV) information online after system loopholes were discovered on the travel website that led to the leak of user information and possible money loss. Shanghai-based Ctrip, China’s biggest tourism website with more than 140 million users, said yesterday that it will not save users’…
Email gaffe exposes Loyola Law School students’ info to others
ALLGov reports: The Financial Aid Office of Loyola Law School in Los Angeles inadvertently exposed the personal information of what may very well have been the school’s entire 395-member student body to 14 members of its May 2014 graduating class. Read more on AllGov The full text of the notification email was posted online last…
JE: Environment Dept in “sensitive” data breach
ChannelOnlineTV reports: Jersey’s Environment Department’s been given a formal telling off for breaching data protection rules. The island’s Data Protection Officer says it involves “sensitive personal data”. It’s issued formal enforcement notice. It follows a complaint received by the Commissioner about information held by the department about an individual. The information was received by the…
AL: Patient data exposed on the internet due to subcontractor's error
There’s been another addition to HHS’s public breach tool. Punuru J.M. Reddy, MD, Inc. in Alabama reported a breach involving their billing vendor and business associate, PracMan, Inc. The incident, which affected 1,179 of their patients, reportedly occurred on August 22, 2013 and was added to HHS’s breach tool yesterday. In a statement issued March…