Nicole Rekant and Stevan Pardo write: The proliferation of data breach cases in Florida courts has focused on Article III standing. To meet the pleading standard under Article III, a plaintiff must allege sufficient facts to show the injury-in-fact is concrete, particularized, actual, and imminent, not conjectural or hypothetical. An allegation of imminent injury may suffice…
Category: Health Data
Ca: Doctors snooped into Humboldt Broncos patient records, privacy commissioner finds
Collette Derworiz reports: Saskatchewan’s privacy commissioner has found several people inappropriately gained access to the electronic health records of the Humboldt Broncos team members involved in a deadly bus crash last April. Sixteen people were killed and 13 were injured in the crash between the junior hockey team’s bus and a semi trailer at a…
Update: Hackers release CarePartners employees’ wage statements and other financial files
On February 6, this site broke the news that some data from the CarePartners hack of 2018 was being dumped publicly, presumably as a way to increase pressure on CarePartners to pay the “requested” fee for the hackers not to release any more data. As noted in the February 6 report, there were two data…
OCR Concludes All-Time Record Year for HIPAA Enforcement with $3 Million Cottage Health Settlement
The Office for Civil Rights (OCR) at the U.S Department of Health and Human Services concluded an all-time record year in Health Insurance Portability and Accountability Act (HIPAA) enforcement activity. In 2018, OCR settled 10 cases and was granted summary judgment in a case before an Administrative Law Judge, together totaling $28.7 million from enforcement…
Community Health System Agrees to Settlement of $4.5 Million for 2014 Data Breach
As I reported recently, the 2014 Community Health System breach has settled for $4.5 million. Linn F. Freedman of Robinson & Cole has a concise summary on The National Law Review. The data breach, believed to be caused by Chinese hackers, compromised the names, dates of birth, addresses, telephone numbers, and Social Security numbers of…
EyeSouth Partners notifies 24,000 patients after employee email account hacked
From the public notice issued by Georgia Eye Associates: EyeSouth Statement Regarding Recent Security Incident EyeSouth Partners (“EyeSouth”) recently suffered a security incident that potentially affected the protected health information (“PHI”) of Georgia Eye Associates patients. EyeSouth has provided the following information to Georgia Eye Associates out of an abundance of caution: Between September 11,…