Cianan Brennan reports: The Data Protection Commission (DPC) has handed down a €65,000 fine to Cork University Maternity Hospital (CUMH) after the personal data of 78 of its patients was discovered disposed of in a public recycling facility elsewhere in the county. The complaint was first raised with the DPC in June 2019 after a…
Category: Health Data
Ca: Kingston Health Sciences Centre investigating possible cyber-security incident
Chris Vilela reports: Kingston Health Sciences Centre (KHSC) has confirmed that it is currently facing an online access interruption, which a source at the hospital says is related to a possible cyber-security breach. KHSC did not immediately disclose the exact nature of the incident. “We can confirm that KHSC’s internet access and external-facing systems are…
Hospital, Patients Seek Ransomware Attack Settlement Approval
Mary Anne Pazanowski reports: Saint Francis Healthcare System and the representatives of a class of over 90,000 patients is asking a federal court to approve the final settlement of a lawsuit growing out of a 2019 ransomware attack on a computer network that disrupted medical services and exposed patient records to unlawful access. Read more…
ShopRite, Wakefern will pay $235k fine, improve security after massive data breach, AG says
Sophie Nieto-Munoz reports: ShopRite and its parent company, Wakefern Food Corporation, will pay $235,000 after two supermarkets threw away electronic devices exposing thousands of customers’ medical information, Attorney General Gurbir Grewal announced Monday. The company will also have to improve its data security after they failed to protect the information of more than 9,700 pharmaceutical customers…
“We take your privacy seriously,” Saturday edition
As part of my research collaboration with Protenus for their Breach Barometer reports, I spend time every week reaching out to entities to ask them for details about incidents if I cannot find any notice on their site or a state attorney general’s site. Most entities respond with the requested information or a copy of…
New Haven Health Department failed to terminate former employee’s access to protected health information
The City of New Haven, Connecticut (New Haven) has agreed to pay $202,400 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to implement a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules. The…