This story out of Texas is a good reminder of why you want to have a good Business Associates agreement in place with your documents storage or shredding vendor. It also reinforces my policy of standing there and watching while my documents are securely shredded by the truck operator. Of course, I don’t generate as…
Category: Health Data
FL: Another Defendant Sentenced In Identity Theft Tax Refund Fraud Scheme Involving Thousands Of Patients’ Personal Identity Information
There’s an update to a case first reported here earlier this year, and then updated here. As my investigation uncovered, the involved medical facility was Apex Laboratory, Inc., who, as of January 28, 2014, had not submitted any breach notification to HHS. Marquis Onigirin Moye, 24, of Pompano Beach, was sentenced for his participation in…
UK: Trust failed to ensure that all employees had mandatory training on information governance
In investigating two fax-related breaches involving two different employees, the Information Commissioner’s Office found that the Barking, Havering & Redbridge University Hospitals NHS Trust had a very low attendance rate for Information Governance training. Thus, although the trust had taken some steps to prevent breaches involving faxes being sent to the wrong fax number, and although a Confidentiality and…
PA: Patient information, cash stolen from Coordinated Health
Tim Darragh reports: Burglars broke into a Coordinated Health office in South Whitehall Township earlier this month, taking patient information and cash, according to police and company officials. The information included the last four digits of patients’ credit cards and Social Security numbers, as well as names, birth dates, phone numbers and some health information….
FL: Source Of Medical Patient Stolen Identities Pleads Guilty
The day after I pointed out how a USAO, Southern District of Florida press release failed to identify the medical practice from where patient data was stolen – and I named the facility – the same USAO office issued another press release today involving one of the other defendants in the conspiracy. And this time,…
AL: Patient data exposed on the internet due to subcontractor's error
There’s been another addition to HHS’s public breach tool. Punuru J.M. Reddy, MD, Inc. in Alabama reported a breach involving their billing vendor and business associate, PracMan, Inc. The incident, which affected 1,179 of their patients, reportedly occurred on August 22, 2013 and was added to HHS’s breach tool yesterday. In a statement issued March…