Sarah Schmidt of Canwest News Service reports that a Staples Business Depot store in Ottawa sold a returned computer hard-drive on clearance that contained hundreds of personal files on it. Although businesses have responsibility to protect information under PIPEDA, Staples has a warning on all of its receipts that says, “Customers are responsible for the…
Category: Breach Incidents
CA: Security breach at SCC inspires shredding changes
Sarah Rohrs reports that a computer printout containing the names, addresses and Social Security numbers of students in the 2008 graduating class of Solano Community College accidentally got mixed in with scrap paper used in a mathematics lab. The college believes it recovered all of the pages.
Jackson Memorial Hospital statement on data theft
John Dorschner of the Miami Herald reports that personal information of more than 200,000 visitors to Jackson Memorial Hospital between May 2007 and March 2008 was on a hard drive that was stolen from the hospital’s mainframe data center on or before February 11. According to the hospital’s CIO, no Social Security numbers or financial…
UK: Medical records from York Hospital found in street
Nicola Fifield of The Press reports that a document containing personal and medical information on 19 patients at York Hospital was found on a sidewalk nearly two miles from the hospital. As an example of how troubling such breaches can be, one notation indicated that a named patient has HIV and syphilis.
TX: Medical Records Found Flying Around Parking Lot
MSNBC has a small item from NBCDFW.com that a Dallas man found a box full of medical records that included Social Security numbers in a parking lot after someone reportedly broke into a doctor’s storage unit. Neither the name of the doctor nor the name of the storage facility were indicated in the news story.
UK: Council’s contractor reports laptop theft
Hayley Mace of EDP24 reports that the Suffolk Coastal District Council has suspended its work with a contractor, Lalpac, after a laptop containing unencrypted data on 3,000 was stolen from an employee’s home.