From the Information Commissioner’s Office: An undertaking to comply with the seventh data protection principle has been signed by Oxford Health NHS Foundation Trust. This follows an investigation into two separate incidents involving disclosures of personal data. The first reported incident involved a file containing personal data relating to approximately 4,200 service users being unintentionally…
Month: September 2014
UK: Police accused of cover-up over theft of video interviews with abuse victims
This is one of those really terrible breaches that are the stuff of nightmares. Brendan Carlin reports: Vulnerable victims of sex crimes have reacted with panic and fury after highly sensitive videos of their police interviews were stolen in an ‘unacceptable’ breach of security. The theft of computers containing the statements sparked disbelief among witnesses…
Not just policies and padlocks: how inadvertent errors in handling medical records can lead to trouble
Peter Leonard of Gilbert & Tobin writes: On 13 December 2013, the Australian Privacy Commissioner (the Commissioner) opened an own motion investigation into Pound Road Medical Centre (PRMC). This was in response to media reports that there were boxes of unsecured medical records at 16 Amberley Park Drive, Narre Warren South (the site), which PRMC…
KR: Regulator to further penalize Kookmin, CitiBank
Chung Ah-young reports: The financial regulator said Sunday that it may impose additional penalties on officials responsible for large-scale data thefts that occurred earlier this year. The Financial Supervisory Service (FSS) said that it will hold a disciplinary review committee meeting on Oct. 2 to discuss the severity of sanctions towards executives and employees of…
Ex-Employees Say Home Depot Left Data Vulnerable
Julie Creswell and Nicole Perlroth report: The risks were clear to computer experts inside Home Depot: The home improvement chain, they warned for years, might be easy prey for hackers. But despite alarms as far back as 2008, Home Depot was slow to raise its defenses, according to former employees. Read more on NY Times….
California Supreme Court to Hear Privacy Challenge to Prescription Database Statute
Kenneth Ofgang reports: The California Supreme Court has agreed to determine whether healthcare regulators violated the state Constitution’s privacy clause when they accessed a local doctor’s prescribing records as part of an investigation into claims of unprofessional conduct. The justices, at their weekly conference in San Francisco Wednesday, voted 5-0 to review the ruling of…