If you haven’t read it already, do read Theresa Defino’s excellent report from HCCA Compliance’s Report on Patient Privacy on JDSupra. It may be one of the most interesting — and most frustrating — reports I’ve read about OCR investigations. Why did I find it frustrating, you might wonder? Because of the lack of any…
In Capital One Data Breach Litigation Federal Judge Grants Capital One’s Motion To Certify Question to Virginia Supreme Court
Kristin L. Bryan of Squire Patton Boggs writes: CPW [Consumer Privacy World] has been tracking since last year the Capital One data breach multidistrict litigation (remember that privilege ruling?). Well, today the federal judge overseeing the litigation granted Capital One’s motion to certify to the Virginia Supreme Court a question of whether there exists under Virginia…
Sg: United Overseas Bank employee allegedly fell prey to scam & leaked personal information of 1,166 customers
Matthias Ang reports: An employee in UOB has disclosed the personal details of 1,166 customers, who are China nationals, as a result of an impersonation scam. According to a press release by the bank, the employee had allegedly been deceived by a China police impersonation scam, leading to the disclosure of the customers’ names, identification and mobile…
Massive hack exposes emails from top Lightfoot officials
Tom Schuba reports: A massive cache of tens of thousands of hacked emails detailing the inner workings of Mayor Lori Lightfoot’s administration was leaked to the public last month apparently in response to the fatal police shooting of 13-year-old Adam Toledo. The emails were posted online on April 19 by Distributed Denial of Secrets, a…
Timberland Regional Library Takes Action After Learning of Data Security Incident
TUMWATER, Wash., May 7, 2021 /PRNewswire/ — Timberland Regional Library (“TRL”) announced today that it has taken action after learning of a data security incident which may have involved the personal information of its patrons. TRL began providing notification to all potentially impacted individuals on May 5, 2021. What Happened? – On January 20, 2021, TRL became aware of a potential…
UK: Hospital medic lost boxes of private patient data while conducting study without approval
Jonathan Humphries reports: A senior medic has been suspended after running a clinical trial using sensitive medical information without permission of his hospital. Miguel Martin Garcia, a band 8 physiotherapist at Liverpool Women’s Hospital, used patient consent forms headed with the trust’s branding and carted off boxes of patient records to a private practice. His decision…