DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Employee in Prince Albert snooped into ex-husband’s, daughter’s medical files

Posted on April 13, 2016 by Dissent

CBC reports:

Snooping into someone’s medical data is a breach of privacy rules, but secretly conducting urine tests is not, Saskatchewan’s privacy and information commissioner says.

A Saskatchewan man complained to the privacy commissioner last year that his ex-wife poked into health information and performed urine tests at a hospital in the Prince Albert area when it wasn’t her job.

It was alleged that the ex-wife —  a combined laboratory and x-ray technologist in the Prince Albert Parkland Health Region — snooped into the records of the ex-husband and their daughter and also tested the daughter’s urine.

However, with respect to the urine, there were no records created, nor data entered into the health region’s computer system, so it’s not a privacy issue, commissioner Ron Kruzeniski ruled April 5.

For that reason, Kruzeniski said the urine case is a worker conduct or misconduct issue.

Read more on CBC.ca.

Does the mother have physical and legal custody of the child? The privacy issue should not rest solely on whether any records were created or entered into the health computer system, but whether the mother had the right to test her daughter’s urine at all or if the father’s consent was required, too, etc.

Update: Okay, I found the Commissioner’s report on the complaint, which explains that the mother ran a (disposable) chem strip on the urine sample. This paragraph explains why it was not a privacy breach under HIPA:

Based on what has been provided by PAPRHA, it does not appear that PAPRHA has custody or control of any personal health information involving the Complainant’s daughter as it relates to the urine samples or the results of testing them. Therefore, HIPA would not apply. The collection and testing of the daughter’s urine samples without a physician’s order is a matter of professional conduct (or misconduct) and not a privacy matter under HIPA. My office has no jurisdiction over matters of professional conduct. Therefore, this Investigation Report will only address the first issue.

No related posts.

Category: Health DataInsiderNon-U.S.

Post navigation

← Another Greenshades client reports tax filing problems
Journalist gets two years in prison for hacking L.A.Times computers →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • India’s Max Financial says hacker accessed customer data from its insurance unit
  • Brazil’s central bank service provider hacked, $140M stolen
  • Iranian and Pro-Regime Cyberattacks Against Americans (2011-Present)
  • Nigerian National Pleads Guilty to International Fraud Scheme that Defrauded Elderly U.S. Victims
  • Nova Scotia Power Data Breach Exposed Information of 280,000 Customers
  • No need to hack when it’s leaking: Brandt Kettwick Defense edition
  • SK Telecom to be fined for late data breach report, ordered to waive cancellation fees, criminal investigation into them launched
  • Louis Vuitton Korea suffers cyberattack as customer data leaked
  • Hunters International to provide free decryptors for all victims as they shut down (2)
  • SEC and SolarWinds Seek Settlement in Securities Fraud Case

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • German court awards Facebook user €5,000 for data protection violations
  • Record-Breaking $1.55M CCPA Settlement Against Health Information Website Publisher
  • Ninth Circuit Reviews Website Tracking Class Actions and the Reach of California’s Privacy Law
  • US healthcare offshoring: Navigating patient data privacy laws and regulations
  • Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
  • Google Trackers: What You Can Actually Escape And What You Can’t
  • Oregon Amends Its Comprehensive Privacy Statute

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.