The following is a press release: NASHVILLE, Tenn.May 22, 2020– The Little Clinic (TLC) announced today that patients could have had their protected health information (PHI) accessed due to a failure in TLC’s online appointment functionality. The Little Clinic made the discovery internally and found if a patient made an appointment and modified that appointment online,…
Category: Exposure
Florida joins ranks of states with unemployment application portal data security issues
And then there were 5. I’ve previously noted that four states have reported data security problems with their state portals for pandemic-related unemployment insurance: Arkansas, Illinois, Ohio, and Coloradans. Today, I see that Florida has joined the ranks of those that were alerted to data security issues. The Florida Department of Economic Opportunity hasn’t said…
Ontario: North Bay Parry Sound District Health Unit Announces Privacy Breach
The following is their notice: NORTH BAY, ON – The North Bay Parry Sound District Health Unit (“Health Unit”) announced today that there was a privacy breach in relation to its online COVID-19 dashboard. The dashboard contained information related to the number of COVID-19 tests and confirmed cases in the local community. Inadvertently, personal identifying…
Ohioans’ and Coloradans’ personal info exposed in pandemic unemployment data breaches
Two more states have reported breaches or issues with state portals to apply for pandemic-related unemployment benefits. In Ohio, Maggy McDonel reports: The personal information of Ohioans receiving pandemic unemployment assistance was recently exposed to a data breach, according to Ohio Department of Jobs and Family Services. The information reportedly included names, Social Security numbers…
Coronavirus: Serco shares email addresses of hundreds of contact tracers in ‘privacy breach’
Matt Mathers reports: E-mail addresses of 300 contact tracers have been shared accidentally by Serco in what could be a breach of data protection rules. The government is using the outsourcing firm to help with its tracing strategy aimed at monitoring Covid-19 cases. The company has been training people to track cases of coronavirus in the UK and has so far…
Tusla fined €75,000 for three GDPR violations
Luke Irwin reports: Tusla, Ireland’s child and family agency, has been fined €75,000 for three breaches of the GDPR (General Data Protection Regulation). It was found to have disclosed the personal information of children to unauthorised parties on three occasions. Read more on IT Governance.