Saskatchewan’s information and privacy commissioner says Saskatchewan Government Insurance is collecting vast amounts of personal health information and needs to do a better job of protecting people’s privacy. That SGI is “over-collecting” is one of Gary Dickson’s conclusions after dealing with three privacy complaints about the Crown corporation. The complaints concerned people who made claims…
Author: Dissent
Update on White Rock Networks breach
Yesterday, I reported on a breach reported by WFAA in Texas, where boxes of intact personnel records, some containing Social Security Numbers and even medical information on employees, had been found next to a public dumpster in Plano. As Brad Watson of WFAA reported, White Rock Networks had gone bankrupt in 2006 and its assets were…
Wikileaks As Security Breach
Ryan Calo writes, in part: The leak represents an appalling security breach—one that makes TJX look like a misplaced diary. As I argue in a previous post, the leak threatens a set of classic privacy harms. One of the central roles of privacy is to help preserve the conditions for intimacy. The leak means that leaders will…
Experts Forecast Top Seven Trends in Healthcare Information Privacy for 2011
In today’s installment, we gaze into the crystal ball to see what 2011 might have in store for us: What are the top security and privacy issues facing the healthcare industry in 2011? A panel of healthcare experts representing privacy, trends, technology, regulatory, data breach, and governance were asked to weigh in with their forecasts…
UK: Scandal of computer snooping by public servants includes medical information
Jack Blanchard reports the results of a freedom of information request on police in Yorkshire, UK. Revelations concerning non-medical incidents are posted to PogoWasRight, but here are the medically related incidents: The cases include… a doctor in Doncaster caught looking at a colleague’s medical records. At one hospital, in Rotherham, a cleaner was caught only…
Data Stewardship: Managing Personally Identifiable Information in Electronic Student Education Records
Data Stewardship: Managing Personally Identifiable Information in Electronic Student Education Records SLDS Technical Brief Guidance for Statewide Longitudinal Data Systems (SLDS) SLDS Technical BriefGuidance for Statewide Longitudinal Data Systems (SLDS) November 2010, Brief 2 NCES 2011-602 The growth of electronic student data in America’s education system has focused attention on the ways these data are…