J. David McSwane reports: Confidential medical records of more than 6,600 Medicaid patients in Texas were unintentionally made public for up to 8 years via the Internet by the Department of Aging and Disability Services. The agency, which is charged with assisting some of the state’s most vulnerable people, became aware of the breach in…
Category: Exposure
Results of investigation into Victoria urologist expected in weeks
Cindy E. Harnett reports: Two years after it was alleged that a Victoria urologist photographed an unconscious obese male patient and sent the picture to others for non-medical reasons, the B.C. College of Physicians and Surgeons has yet to rule on the case. The privacy breach is alleged to have occurred on July 4, 2013,…
IN: Defunct “My Fast Lab” leaves patient information exposed
Giles Bruce reports yet another instance where a firm or covered entity closes and confidential data is just dumped, unshredded. I wish HHS and/or FTC would go after more of these situations and impose some serious consequences to send a clear message that this will not be tolerated. Medical tests. Copies of Social Security cards,…
Abandoned autopsy lab in Tobolsk, Siberia still has medical records, human remains
This is a somewhat bizarre – and disturbing – breach involving medical records and human remains. Police have launched an investigation after an abandoned autopsy laboratory containing mummified baby remains was discovered in a park. The gruesome facility in Tobolsk, which may have been used as recently three years ago, was stumbled across by a…
UK: Livid parents in the school placement request system demand answers from East Ayrshire Council after confidential information was LEAKED
Clair Fullarton reports: Sensitive details, including 13 parents’ names, addresses, phone numbers, along with children’s names and dates of birth were posted out with letters on St Andrew’s Primary placement request appeals. The list also gives siblings’ details, personal circumstances, child care arrangements and in one instance refers to a parent working away from home….
UK: South West Yorkshire Partnership NHS Foundation Trust
From the ICO: An undertaking to comply with the seventh data protection principle has been signed by South West Yorkshire Partnership NHS Foundation Trust. This follows a series of incidents where patient data was sent to incorrect addresses. On investigation it was disovered that although the Trust had issued ad hoc guidance to staff following…