DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

University of Mississippi Medical Center and Mississippi State Department of Health notify 1500 research participants that stolen laptop contained their health information

Posted on December 20, 2011 by Dissent

The University of Mississippi Medical Center and the Mississippi State Department of Health are informing nearly 1,500 participants in research studies of a breach of their personal health information.

A UMMC faculty member had been assigned a laptop for use in the studies. On Oct. 31, a UMMC employee reported that the laptop used for storing participants’ personal health information was stolen from the clinic.

The laptop contained databases of information collected for certain research studies. The databases were password protected. The first database stored health information of patients who had been seen at a MSDH clinic located in the Jackson Medical Mall Thad Cochran Center. MSDH has confirmed that patients who agreed to participate in a study at the clinic gave permission for UMMC to use their personal health information.

The first database, involving about 1,400 patients, included medical record numbers, age, sex, race, zip code and blinded lab results. The information did not include patient names, addresses, Social Security numbers, or any financial information. Though it is possible for patients to be identified, the odds of it occurring are extremely low based on how the information is labeled in the database.

UMMC and MSDH are working together to notify these 1,400 patients impacted by the breach through letters mailed Dec. 19.

A second smaller database also was contained on the laptop and included sensitive protected health information of approximately 75 UMMC patients. These patients are being contacted directly by UMMC.

“We take any breach of patients’ personal health information very seriously, and we apologize for this occurrence. We are reviewing our study procedures to prevent this from happening again,” said Dr. James Keeton, UMMC vice chancellor for health affairs.

The laptop theft occurred when UMMC employees failed to follow departmental guidelines and left the laptop unsecured for a short period of time. Since then, disciplinary actions have been taken against the responsible employees.

Despite vigorous efforts, attempts to recover the stolen laptop have been unsuccessful. The clinic has safeguards in place to ensure the privacy and security of all patient health information, when procedures are properly followed.

For more information, patients notified of the breach may call UMMC toll free at 1-855-241-2575 between 8 a.m.-4:30 p.m. They also can email inquiries to [email protected].

Source: University of Mississippi Medical Center

Related posts:

  • University of Mississippi Medical Center to pay $2.75M to settle HIPAA charges
  • U. of Mississippi Medical Center notifies patients seen between 2008 – 2013 of breach
  • Updating: CaptureRx incident impacted more than 2.4 million. List of Entities.
  • Feinstein Institute for Medical Research notifies 13,000 research participants after laptop with PHI stolen from employee's car
Category: Health Data

Post navigation

← dump of paypal accounts
Fertile sperm donor draws criticism from FDA, docs →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit
  • British national “IntelBroker” charged with causing $25 million in damages; U.S. seeks his extradition from France
  • France issues press statement about arrest of ShinyHunters members
  • Patients Allege Home Delivery Pharmacy Failed to Timely Notify Them of Data Breach

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions
  • NY Attorney General James Affirms Hospitals Must Provide Access to Emergency Abortion Care
  • How Internet of Things devices affect your privacy – even when they’re not yours

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.