More on a breach originally covered in an earlier blog post. Ryan J. Foley of Associated Press reports: The University of Iowa Hospitals and Clinics will fire three employees and suspend two others after an investigation confirmed they inappropriately breached the electronic medical records of hospitalized football players, a spokesman said Thursday. Read more on Newser.
Category: Health Data
Private University of Washington medical records sold at surplus store
Allen Schauffler reports that someone who found patient records in a piece of furniture he bought at the University of Washington surplus store turned the records over to the news station. The medical data is mostly X-ray and MRI imaging of spines, apparently in various stages of disarray. In my very cursory check of what’s…
NV: Conspirator in case involving University Medical Center patient data pleads guilty
In November 2009, the Las Vegas Sun revealed that someone at University Medical Center in Las Vegas was leaking patient information to personal injury lawyers and chiropractors. I’ve posted a number of updates to the case, and today’s Las Vegas Review-Journal reports the latest development. Doug McMurdo reports that Richard Charette pleaded guilty to having…
Ankle + Foot Center of Tampa Bay breach affecting 156,000 included Social Security Numbers as well as PHI
Now that I have additional information on a hacking incident involving the protected health information (PHI) of 156,000 patients of the Ankle + Foot Center of Tampa Bay, it is clear that this breach belongs on this site. I had previously noted it on PHIprivacy.net on January 29 after it appeared on HHS’s breach tool. At…
Ca: Apply the letter of the law to breaches of privacy
The editors of the Regina Leader-Post call for more disclosure and transparency on data breaches: Perhaps it’s going to take a prosecution – and the possibility of a $50,000 fine -for the Saskatchewan government to show it really means business when it comes to protecting personal information in this province. What is clear is that…
HIPAA Compliance Investigations And The Insider Threat
Last month I noted a privacy complaint involving Rowan Regional Medical Center in North Carolina. OCR’s investigation into the complaint has reportedly been re-opened. Rebecca Herold offers her thoughts on why OCR might have re-opened the complaint: […] I was recently contacted by someone who had a question about a recent HIPAA complaint against Rowan…