Anna Gorman reports: A security breach by a private company that contracted with California’s public health department inadvertently allowed unauthorized access to the HIV status of 93 people, according to a lawsuit filed this week in San Francisco County Superior Court. New York-based nonprofit Lambda Legal filed the lawsuit against the contractor, A.J. Boggs &…
Category: Health Data
ID theft suspect had medical records, personal information of 100+ people, police say
WAVE3 reports: A man pulled over for allegedly driving a stolen car is facing a host of other charges. Andrew Davis was pulled over in a stolen car and what the arresting officers found during the search of the vehicle led to a total of 13 charges, according to Davis’ arrest report. Found in the…
Chesapeake Regional Healthcare notifies 2,100 sleep center patients of medical record breach
Elizabeth Simpson reports: Chesapeake Regional Healthcare is notifying 2,100 patients from the hospital’s sleep center program that some of their electronic health information might have been compromised. Two portable hard drives were reported missing from the hospital’s sleep center on Feb. 6, which prompted contacting law enforcement, according to a Friday news release from the…
Is OCR Moving the Goal Posts on Vendor Management?
Yesterday, I posted an item about a settlement between New Jersey and Virtua Medical Group after a 2016 data leak by their transcription vendor exposed approximately 1,600 patients’ information on the internet. New Jersey took the position that this was a HIPAA violation and that the entity was responsible for what its vendor had done…
Dozens of hospital staff access medical records of suicidal reality soap star
Dozens of people have been able to access the medical files of a television reality show star who tried to commit suicide, according to television current affairs show EenVandaag. Samantha de Jong, better known as Barbie, was admitted to hospital in January after trying to kill herself. She had hardly been off the tv since…
Virtua Medical Group Agrees to Pay Nearly $418,000, Tighten Data Security to Settle Allegations of Privacy Lapses Concerning Medical Treatment Files of Patients
There’s a follow-up to a breach previously reported on this site in 2016 in which a transcription vendor’s error resulted in the exposure of some Virtua Medical Group’s patients’ protected health information on the internet. It appears that New Jersey has settled charges against VMG over the incident. Of note, the charges are that the VMG…