With all the wildly erroneous claims made by people about what is covered by HIPAA, here’s a great explainer by attorney Jeff Drummond on exactly what kinds of entities ARE covered by HIPAA (Spoiler alert: yes, your local bar CAN ask you your vaccination status without violating HIPAA because they are not covered by HIPAA)….
Category: Health Data
PA: Bible Fellowship Church Homes notifies residents of data security incident
The following press release is not really clear about whether this was a ransomware incident or not, and as yet, we have no numbers for this one. This post may be updated as more information becomes available. WHITEHALL, Pa., Feb. 17, 2022 /PRNewswire/ — Bible Fellowship Church Homes, Inc., dba Fellowship Community (“Fellowship Community”), a faith-based continuing care…
UK: Confidential patient data breached by ESNEFT staff
Lewis Adams reports: Cases of snooping on confidential patient data at the trust which runs Colchester Hospital are among the highest in the country, figures reveal. East Suffolk and North Essex Foundation Trust reported the country’s second highest figure when it came to staff breaching patient privacy. The Daily Mail revealed today incidents involved nosey…
Sask. Health Authority accidentally outs employees that were part of mandatory COVID testing program
Yasmine Ghania reports: About 200 Saskatchewan Health Authority (SHA) employees were accidentally identified by name in an email as participants of the organization’s now-scrapped mandatory testing program. The SHA ended its vaccine and testing mandate Monday. Before that, its approximately 44,000 employees had to provide proof of vaccination or enrol in a mandatory testing program…
AZ: La Posada notifies current and former employees of malware incident
From their press release: La Posada is providing notice of a recent incident that may affect the security of some information pertaining to current and former employees. The confidentiality, privacy, and security of information in La Posada’s care is one of its highest priorities and La Posada takes this incident very seriously. What Happened? On December 10, 2021,…
Update on Scripps’ ransomware incident
In May, 2021, Scripps disclosed a cyberattack that was subsequently identified as a ransomware incident that impacted 147,267 patients. Last month, a potential class action lawsuit was thrown out of federal court because the preponderance of Californnia residents meant it should be in state court, not federal. This week, Scripps has issued an update to…