This notice from their web site just showed up in my searches: Catawba Valley Medical Center (CVMC) is committed to protecting the security and confidentiality of our patients’ information. Regrettably, this notice concerns an incident that may have involved some of that information. On August 13, 2018, CVMC determined an unauthorized person may have gained…
Category: Health Data
Ca: AHS failed to protect health information, privacy commissioner finds
We had noted this breach on this site back in 2016, but here’s the follow-up. CBC reports: Alberta Health Services has come under fire from the province’s privacy commissioner for its role in the largest and longest-duration privacy breach AHS has ever experienced. The Office of the Information and Privacy Commissioner reported Wednesday that a former AHS…
VA: Norfolk school parents notified of medical data breach
Sara Gregory reports: Norfolk school officials this week notified the parents of students and employees whose medical information was publicly disclosed in school crisis plans online for a year until August. After staff and attorneys reviewed the plans, the district identified a total of 308 students and staff who were referenced in the school crisis…
State officials grill Minnesota DHS over two breaches
KSTP reports: On Wednesday, state leaders addressed two recent data breaches at the Department of Human Services. […] “Could you please try and help us connect why there was such a failure here of four months before folks were notified of the compromising situation of their private data?” asked Sen. Mary Kiffmeyer, (R) Big Lake….
The 3 Biggest Data Security Takeaways From The 11th Circuit Decision In FTC v. LabMD
After providing some history the LabMD enforcement action by FTC, and the former’s appeal to the 11th Circuit, Tom Kulik of Scheef & Stone, LLP outlines what he considers the three biggest data security takeaways from the case. You can read his article on Above the Law.
Anthem Pays OCR $16 Million in Record HIPAA Settlement Following Largest U.S. Health Data Breach in History
From HHS/OCR, this record-setting announcement: Anthem, Inc. has agreed to pay $16 million to the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) and take substantial corrective action to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules after a series of cyberattacks led…