Readers of PoPville report: “Just applied for the new DC digital SMART Health Card and was sent someone else’s vaccine record?! Hopefully you’re not sending my vaccine card to other random people??” and “Received notification from DCHealth about digital vaccine record. Went to the site and signed up using DOB; PIN; and first and last name. Received…
Category: Health Data
HIPAA: The Who: Plans, Providers, and Clearinghouses, and the First of the Rule of 3s.
With all the wildly erroneous claims made by people about what is covered by HIPAA, here’s a great explainer by attorney Jeff Drummond on exactly what kinds of entities ARE covered by HIPAA (Spoiler alert: yes, your local bar CAN ask you your vaccination status without violating HIPAA because they are not covered by HIPAA)….
PA: Bible Fellowship Church Homes notifies residents of data security incident
The following press release is not really clear about whether this was a ransomware incident or not, and as yet, we have no numbers for this one. This post may be updated as more information becomes available. WHITEHALL, Pa., Feb. 17, 2022 /PRNewswire/ — Bible Fellowship Church Homes, Inc., dba Fellowship Community (“Fellowship Community”), a faith-based continuing care…
UK: Confidential patient data breached by ESNEFT staff
Lewis Adams reports: Cases of snooping on confidential patient data at the trust which runs Colchester Hospital are among the highest in the country, figures reveal. East Suffolk and North Essex Foundation Trust reported the country’s second highest figure when it came to staff breaching patient privacy. The Daily Mail revealed today incidents involved nosey…
Sask. Health Authority accidentally outs employees that were part of mandatory COVID testing program
Yasmine Ghania reports: About 200 Saskatchewan Health Authority (SHA) employees were accidentally identified by name in an email as participants of the organization’s now-scrapped mandatory testing program. The SHA ended its vaccine and testing mandate Monday. Before that, its approximately 44,000 employees had to provide proof of vaccination or enrol in a mandatory testing program…
AZ: La Posada notifies current and former employees of malware incident
From their press release: La Posada is providing notice of a recent incident that may affect the security of some information pertaining to current and former employees. The confidentiality, privacy, and security of information in La Posada’s care is one of its highest priorities and La Posada takes this incident very seriously. What Happened? On December 10, 2021,…