Maria Dinzeo reports the latest development in what is probably one of the most well-known ID theft cases: A cancer survivor who won more than $1 million from Equifax for improperly handling his identity theft report can keep the full award, a federal judge ruled. U.S. District Judge Susan Illston rejected the credit reporting agency’s…
Category: Of Note
Data Breach Investigation | Due Process of Law
The following is cross-posted from PHIprivacy.net: In September, I posted an excerpt from a thought-provoking commentary by attorney Benjamin Wright. In discussing a fine levied against Lucile Salter Packard Hospital for late notification under California’s breach notification law, he had written, in part: The California Legislature made clear it wants notices to be issued quickly. However,…
Stonewalled? Guttenberg housing residents still worried
Back in August, I reported a breach involving the Guttenberg Housing Authority in New Jersey that had reportedly left many housing residents and housing applicants on the waiting list confused and worried due to the lack of information in the notifications. Three months later, Tricia Tirella of the Hudson Reporter reports that residents are still…
Jp: ‘Leaked MPD data’ out as book
As a follow-up to the breach reported here: A Tokyo publishing house has released a book containing what are believed to be Metropolitan Police Department antiterrorism documents that were leaked onto the Internet last month. Released by Dai-San Shokan Thursday, the book contains the personal information of Muslim residents in this country, such as their…
UK: First monetary penalties served for serious data protection breaches
The Information Commissioner today served two organizations with the first monetary penalties for what he characterized as serious breaches of the Data Protection Act. The first penalty, of £100,000, was issued to Hertfordshire County Council for two serious incidents where council employees faxed highly sensitive personal information to the wrong recipients. The first case, involving…
Puerto Rico Dept of Health reports breach affecting 400,000; Triple-S Salud fined $100k
The Puerto Rico Department of Health has reported a security breach to HHS involving Triple-S Management and Corp. and Triple-S Salud, Inc. Triple-S Management is a managed care company while Triple-S Salud (Triple Health) is an independent licensee of the Blue Cross and Blue Shield Association for Puerto Rico. The breach was reported to HHS…