Breaches involving health data in 2017 are continuing where 2016 left off – there are too many of them. In addition to the breaches reported earlier today on this site involving Catholic Charities of Baltimore and Complete Wellness (also in Baltimore), we also learned about three other breaches involving health data: The Center for Mental Health in Montana…
Category: Health Data
Catholic Charities of Baltimore Notifies Clients of Potential Security Incident
Catholic Charities of Baltimore issued a press release today after an employee’s email account was hacked and personal and protected health information of the charity’s clients may have been accessed or acquired. The press release does not indicate how many people they are notifying. Nor does it indicate how the hack occurred – did the…
MD: Complete Wellness notifies 600 patients after employee misconduct results in lost PHI
On January 9, Complete Wellness, a treatment center in Baltimore for those with mental health issues or substance abuse, posted a Warning of Potential Privacy Violation on their web site. The warning described an incident in which an employee – without authorization – copied patient files to a flash drive, and the flash drive was…
Former Eastern Health employee charged in privacy breach
James McLeod reports: A former employee of Eastern Health alleged to have improperly accessed the personal health information of a number of patients has been charged under the province’s Personal Health Information Act. The charges were announced today by Information and Privacy Commissioner Donovan Molloy. The first appearance on the matter is set for Feb….
CoPilot Provider Support Services notifies 220,000 of data security breach in 2015
UPDATE: As of January 24, CoPilot continues to ignore inquiries sent by this site asking for explanations of why it took so long to notify/disclose this breach. But I see a lot of commenters asking this site/me for information. I don’t have any information to share with you other than what is in the post…
OCR settles charges against MAPFRE Life Insurance for $2.2 million
As breaches go, the theft of a USB drive with ePHI on 2,209 insurance members doesn’t sound like a lot, but The U.S. Department of Health and Human Services, Office for Civil Rights (OCR), has announced a settlement with MAPFRE Life Insurance Company of Puerto Rico because of what they found when they investigated the breach…