Category: Health Data

One of the breaches added to HHS’s public breach tool this week was an incident involving the City of Cincinnati, who reported that 5,696 individuals were notified of a breach on April 4 involving their business associate, OptumRx. PHIprivacy.net contacted the City of Cincinnati, who sent this statement about the incident: “In April we notified…

Greenwood Leflore Hospital in Greenwood, Mississippi has notified 3,750 patients after five bins of old x-rays with limited patient information was stolen from hospital grounds. From the notice posted on their website: Notice to Patients of X-Ray Films Made in 2007 or Earlier That Were Removed from the Hospital Without Authorization We are providing this…

[Update: The Irving incident affected 2,308 and the McKinney incident affected 1,253. Baylor Health declined to discuss their internal security policies, so we do not know if the doctors were violating any policy by having unencrypted PHI in their email accounts or if Baylor Health permits this.] Original article: After posting the two phishing reports from Baylor…

Over on HealthITSecurity.com, Patrick Ouellette notes that American Health Information Management Association’s (AHIMA) recently published a Breach Management Toolkit. The tool requires an AHIMA membership, but the Journal of AHIMA detailed what the tool has to offer providers and a sample of required elements within a data breach notification letter. Patrick reports that the toolkit discusses five critical pieces of…

Tim O’Brien reports: A nurse at Albany Medical Center is accused of stealing the identities of patients for at least a year and possibly as many as four, Sheriff Craig Apple said Wednesday evening. She and her live-in boyfriend then used the information to set up credit card accounts and to print fake bank checks, he said. The nurse was…