Valerie K. Jackson of Jackson Lewis writes: October 2018 marks the 15th annual National Cyber Security Awareness Month. In honor of this occasion, the Office of the National Coordinator for Health Information Technology (ONC) and the HHS Office for Civil Rights (OCR) have jointly launched an updated HIPAA Security Risk Assessment (SRA) Tool to help covered entities and…
Category: Health Data
Missouri Department of Health and Senior Services notifies 10,400 whose data improperly retained by contractor
JEFFERSON CITY, MO – On October 24, 2018, the Missouri Department of Health and Senior Services (“Department”) mailed over 10,400 letters to individuals informing them that the Department recently discovered a breach of security of their personal information. The breach occurred because, sometime before September 30, 2016, an information technology contractor for the State of…
178 Albertans notified about privacy breach by former Alberta Health Services employee
Michael Franklin reports: The AHS has informed a group of Albertans that details about their health records, that were supposed to remain private, were recently accessed by a former AHS employee. The agency says it notified the affected individuals on Wednesday. The inappropriate access took place between February and July of this year at Calgary’s…
Raley’s pharmacy patients notified after laptop with protected health information stolen
If you were or a pharmacy patient at Raley’s, Bel Air Mart, or Nob Hill General Store, your information may have been on a laptop that was stolen on September 24. In a notification to the California Attorney General, David Fluitt, Director of Pharmacy Operations for Raley’s, writes that the types of unencrypted information on…
EE: Personal and sensitive information of children publicly available for years
As I was just saying in the post about the Girl Scouts breach, children’s medical information can be breached in so many ways outside of the healthcare sector. And that’s true outside the U.S. as well. Priit Pärnapuu provides a concerning, but timely, example from Estonia: Schools’ information system EKIS allowed anyone to read and…
CA: Data breach may have exposed personal information of 3,000 Girl Scouts of Orange County
Children’s medical alerts and health conditions may be breached in so many ways outside of the healthcare sector. Schools, sports clubs, camps, and yes, boy scouts and girl scouts, are just some of the organizations that may hold sensitive information that gets breached, with no report needed to HHS. Alejandra Reyes-Velarde reports: Members of the…