NYS Comptroller DiNapoli’s Office released an audit of Roswell Park Cancer Institute’s security for ePHI under the requirements of HITECH. The summary reports: The institute has taken many steps to safeguard its electronic protected health information (ePHI) and meet security requirements. In addition, auditors found the institute has adequate protection policies in place and a plan to make…
Category: Health Data
Customers of Anthem say ID theft proliferating
On Thursday, I had this exchange with @dapnwmomster on Twitter: @PogoWasRight Many Anthem customers had their info used by hackers filing false tax returns – the identity protection they provided FAILED. — Wendy G (@dapnwmomster) July 9, 2015 @dapnwmomster I’m not sure how plaintiffs can prove the info used in fraudulent filings was from Anthem given…
St. Elizabeth’s Medical Center agrees to settle potential violations of HIPAA; Settlement Highlights Importance of Safeguards When Using Internet Applications
HHS has announced a settlement with St. Elizabeth’s Medical Center (SEMC) that relates to two potential HIPAA violations – neither of which have been reported previously on this site or PHIprivacy.net and neither of which appear on HHS’s public breach tool: St. Elizabeth’s Medical Center has agreed to settle potential violations of the Health Insurance Portability…
Howard University Hospital patients received letters meant for others
Julie Zauzmer reports: More than 1,400 Howard University Hospital patients accidentally received letters intended for other patients with the same last names, the university disclosed on Friday. The letters contained only the patients’ names, their account numbers and the dates that they visited Howard University doctors, not any other personal information, the university said in…
Ca: Mailing error in Newfoundland and Labrador reported to privacy commissioner
The Canadian Press reports: Six beneficiaries in Newfoundland and Labrador’s prescription drug program have received letters from the Department of Health and Community Services that were intended for someone else. The government says it has contacted the six people affected by telephone. The six letters are from 21,000 mailings sent on June 29 extending beneficiaries’…
Hospital investigating leak of Jason Pierre-Paul’s medical information
More on a privacy breach previously noted on this blog. Henry McKenna reports: The hospital treating Giants defensive end Jason Pierre-Paul has begun searching for the cause of a data breach, which allowed ESPN reporter Adam Schefter to share Pierre-Paul’s medical records on Twitter on Wednesday. The documents showed Pierre-Paul was scheduled for a right…