Kathie Griffiths reports: A probe was under way last night after highly-confidential medical files and records were found dumped in the grounds of an abandoned nursing home in Bradford. Among the personal information scattered in piles of rubbish at The Knoll at Thackley were care plans, detailed health assessments and poignant photos of residents who…
Category: Health Data
UK: Unencrypted laptops with patient data stolen from Harley Street Clinic results in undertaking
There was no press release on this one, but the UK’s ICO had HCA International Limited sign an undertaking following the theft of two unencrypted laptops from a hospital in March. According to the statement: The Information Commissioner (the ‘Commissioner’) was provided with a report of the theft, in March 2011, of two unencrypted laptops containing…
Update: Health Net data breach affected more Oregonians than previously thought
Brent Hunsberger reports that Health Net has sent out corrected notifications following the discovery of missing drives in January: Health Net Inc. said a data breach discovered in January affected more people than originally thought and that it had erred in telling thousands of former and current members that their Social Security numbers were not…
HIPAA Auditor Involved in Own Data Breach
Dom Nicastro of Health Leaders Media has an item today about how KPMG, the company hired by OCR to implement the HITECH-mandated HIPAA compliance auditing plan, had its own data breach last year. That breach was covered at the time on PHIprivacy.net, here. Dom writes, in part: Asked if OCR considered the KPMG involvement on…
NC: VA worker sentenced for stealing vets' identities
A Department of Veterans Affairs worker has been sentenced to 11 years in federal prison for stealing personal information from disabled North Carolina veterans to generate bogus tax returns. Michael Ray Woods, 48, of Fayetteville, was convicted in February of 12 counts of preparing false tax returns, 10 counts of wire fraud, 10 counts of…
UK: Hampshire school breached data protection rules
From the Information Commissioner’s Office: Bay House School in Hampshire breached the Data Protection Act after the personal details of nearly 20,000 individuals, including some 7,600 pupils, were put at risk during a hacking attack on its website. The hack – which happened in March and involved one of the school’s pupils – exposed pupils’…