DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Another lawsuit filed under CMIA fails

Posted on January 24, 2015 by Dissent

One of the larger breaches in 2014 involved a Los Angeles County contractor, Sutherland Healthcare Solutions. The theft of some of their computer equipment with unencrypted patient identity and clinical information was disclosed in March 2014, and within days, a potential class action lawsuit had been filed. The breach impacted approximately 3420,000 patients  of the Los Angeles County departments of Health Services and Public Health  as well as patients at City of Hope Hospital and San Francisco General Hospital and Trauma Center.

But as we’ve seen in other California cases involving Eisenhower Medical Center, Alere Home Monitoring, and Sutter Health, simply demonstrating a breach involving confidential information occurred is not enough for patients to prevail in any lawsuit under the state’s Confidentiality of Medical Information Act.  The courts have held that the plaintiffs need to demonstrate that at the very least, the data were actually exposed to others (i.e., viewed by others), and not just stolen.

So it should come as no surprise that on Friday, a judge indicated she would dismiss the lawsuit against Los Angeles County and Sutherland if the plaintiffs can’t demonstrate that the medical information was actually exposed.

Law360 has the story, but you’ll need a subscription to access it.

Note that this case appears to still be open on HHS’s breach tool, although for some reason, the number affected is reported as 55,900.

No related posts.

Category: Uncategorized

Post navigation

← Privacy concerns over Healthcare.gov prompt reversal
Wyoming Senate committee tackles data privacy bills →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Avantic Medical Lab hacked; patient data leaked by Everest Group
  • Integrated Oncology Network victim of phishing attack; multiple locations affected (2)
  • HHS’ Office for Civil Rights Settles HIPAA Privacy and Security Rule Investigation with Deer Oaks Behavioral Health for $225k and a Corrective Action Plan
  • HB1127 Explained: North Dakota’s New InfoSec Requirements for Financial Corporations
  • Credit reports among personal data of 190,000 breached, put for sale on Dark Web; IT vendor fined
  • Five youths arrested on suspicion of phishing
  • Russia Jailed Hacker Who Worked for Ukrainian Intelligence to Launch Cyberattacks on Critical Infrastructure
  • Kentfield Hospital victim of cyberattack by World Leaks, patient data involved
  • India’s Max Financial says hacker accessed customer data from its insurance unit
  • Brazil’s central bank service provider hacked, $140M stolen

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Department of Justice Subpoenas Doctors and Clinics Involved in Performing Transgender Medical Procedures on Children
  • Google Settles Privacy Class Action Over Period Tracking App
  • ICE Is Searching a Massive Insurance and Medical Bill Database to Find Deportation Targets
  • Franklin, Tennessee Resident Sentenced to 30 Months in Federal Prison on Multiple Cyber Stalking Charges
  • On July 7, Gemini AI will access your WhatsApp and more. Learn how to disable it on Android.
  • German court awards Facebook user €5,000 for data protection violations
  • Record-Breaking $1.55M CCPA Settlement Against Health Information Website Publisher

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.