Cambridgeshire Community Services NHS Trust has had several breaches involving loss or theft of personal information. But it wasn’t the breaches per se that caught the attention of the Information Commissioner’s Office as much as the finding that the Trust was only requiring their employees to refresh Information Governance (IG) training every two years. As…
Category: Commentaries and Analyses
TV5Monde in chaos as data breach costs roll into the millions
Just because a hack is no longer in the news, it doesn’t mean it still isn’t having a major impact on its target. The TV5Monde hack was apparently much more damaging than some of us had imagined at the time. Doug Drinkwater reports: TV5Monde was very visibly hacked back in April when the French news channel, which…
NIST releases draft guidelines for protecting patient data on mobile devices; comments sought
Mohana Ravindranath reports: The federal government is attempting to ensure that doctors don’t inadvertently compromise patient data when they use smartphones to access electronic health records. The National Institutes of Standards in Technology this week released a step-by-step guide for hospitals and IT professionals, listing ways to secure the connection between devices and electronic health records. NIST is collecting public comment on…
UK: FoI reveals scale of financial data loss
Tessa Norman reports on the results of a freedom of information request filed with the Financial Conduct Authority (FCA) in the U.K.: Incidents reported to the regulator include a consumer credit firm which lost in transit a server containing customer details, affecting 5 million people. The regulator informed the Information Commissioner’s Office of the incident….
Ontario hit with hundreds of privacy-breach complaints
Richard J. Brennan reports: Ontario has been hit with more than 200 privacy complaints about the mishandling of personal information by the provincial government or its agencies over the past 18 months, according to the information and privacy commissioner. Most of them can be chalked up to human error or computer glitches, but the common thread in…
Is there a “constitutional right to informational privacy”? as claimed by NTEU’s data breach lawsuit?
On July 8, in noting NTEU’s lawsuit over the OPM hack, I had questioned the suit’s claim that the government breach constituted a violation of their “constitutional right to informational privacy.” Jennifer E. Canfield of Montgomery McCracken Walker & Rhoads LLP also picked up on that point and discusses the issue on Montgomery McCracken Data Privacy…