Richard Olver writes: The NHS treats more than 1 million people every 36 hours. These patients are often at their most vulnerable physically and emotionally, but so too are their digital selves. The health sector accounts for the most data security incidents in the UK — more than 40% of all UK incidents in Q4 2015 — and…
Category: Non-U.S.
Insurance broker fined $1K for not following MPI privacy rules
Vera-Lynn Kubinec reports: A privacy breach involving customers’ auto insurance files has netted a Winnipeg insurance broker a $1,000 fine. Manitoba Public Insurance determined that last fall broker Basil Galarnyk accessed customer information 42 times without performing any transactions and with “no discernible reason” for accessing the files, a discipline panel has found. As a result, MPI…
European Parliament Adopts Directive on Security of Network and Information Systems
Hunton & Williams writes: On July 6, 2016, the European Parliament adopted the Directive on Security of Network and Information Systems (the “NIS Directive”), which will come into force in August 2016. EU Member States will have 21 months to transpose the NIS Directive into their national laws. The NIS Directive is part of the…
Ca: SaskPower employee fired for ‘snooping’ on more than 4,000 employee files
Alexa Huffman reports: Snooping on personal staff data, including SIN numbers, salaries and spouse names, led to a SaskPower employee being fired in January. According to a report released in June by the Saskatchewan Information and Privacy Commissioner, Ron Kruzeniski, the employee inappropriately accessed 4,382 human resources files from current and former employees at the…
UK ‘Serious Incident’: East Riding patients medical records lost by company paid to keep them safe
As reported in the Hull Daily Mail: Medical records for patients in the East Riding have been lost by a firm paid by health bosses to keep them safe in storage. East Riding Clinical Commissioning Group (CCG) has launched an investigation after discovering paper records had gone missing. […] She said: “The storage company commissioned to…
Ca: Physician’s certificate of registration suspended for 5 months, slapped with $5,000 fine over breaches
Jeffrey Ougler reports: The College of Physicians and Surgeons of Ontario has found that Dr. Douglas Brooks committed an act of professional misconduct. The college charged in June 2015 that the Sault Ste. Marie physician “inappropriately, and without consent,” accessed health records of two patients, and acted as coroner in all, or part, of the…