HHS has now started revealing the names of the HIPAA-covered entities who had previously been listed only as “private practice” in their list of those having breaches affecting 500 or more individuals. PHIprivacy.net had been one of a number of entities that had complained about private practices being shielded, but OCR had interpreted the Privacy…
Author: Dissent
Medical privacy at risk in Georgia
Attorney David E. Clark comments: Doctor-patient confidentiality is something we all rely on. The problem is, it’s not the law in Georgia. If you go to the hospital after an allergic reaction to an illegal drug, or even someone else’s prescribed Vicodin, you have a choice: Tell the doctor what drug you took, and maybe…
UK: Birmingham Children’s Hospital found in breach of privacy rules
The Information Commissioner’s Office (ICO) has found Birmingham Children’s Hospital NHS Foundation Trust to be in breach of the Data Protection Act (DPA). The Information Commissioner was initially informed of a data security breach by the Trust after two unencrypted laptops containing personal information relating to 17 patients were stolen from the Medical Day Centre….
Patient Says Doctor Let Newspaper Peep on Medical Marijuana Exam
Tish Kraft reports: A patient claims her doctor allowed a newspaper reporter to surreptitiously videotape her while she discussed with the doctor the medical use of marijuana for chronic pain. The patient claims Dr. Cristal Speller and Natural Care for Wellness violated medical privacy and wiretapping laws, and that publication of the story in the…
CT: Missing computer drive contains teacher retirement data
Linda Conner Lambeck reports: Teachers around the state received a letter last week warning them that a computer flash drive containing retirement fund data is missing. The letter from the State Teacher’s Retirement Board said the flash drive contains encrypted 2007-08 member annual statement data. [….] It’s not known what kind of data is on…
Akron man could face 40 years in prison after stealing credit card info from mother’s business
Tonya Sams reports: A 46-year-old Akron man faces a maximum of 40 years in prison after pleading guilty Friday in Summit County Common Pleas Court for stealing credit card information from customers at his mother’s dry cleaning business and writing bad checks to the state. Michael Bukuts was guilty of engaging in a pattern of…