Jason C. Gavejian and Maya Atrakchi of Jackson Lewis write: The U.S. Supreme Court recently granted a petition for review of a data breach lawsuit addressing the issue of whether parties can pursue a class arbitration when the language in the arbitration agreement does not explicitly allow for such, Lamps Plus, Inc. v. Varela , No. 17-988,…
UK: Patient information stolen from Dorset HealthCare employee’s car
Josh Wright reports: The loss of medical information relating to as many as 50 patients has sparked fears about the security of people’s private records. Personal details belonging to between 11 and 50 patients of the trust which were kept on a notepad were stolen along with a laptop belonging to a Poole-based employee of…
Hair Free Forever notifies clients/patients that a former employee is misusing their information to recruit patients for another practice
Hair Free Forever (HFF) appears to have suffered an insider-wrongdoing breach involving a now-former employee using patient information to solicit patients for another business. HFF’s notification letter suggests they are covered by HIPAA. The number of patients affected by the breach is not disclosed in the template notification letter submitted to the state attorney general’s office,…
Elmcroft Senior Living notifies residents and family members of hack
Elmcroft Senior Living is notifying an unspecified number of residents of a hacking incident that occurred on May 10 and that was discovered on May 12. According to a template of their notification letter submitted to the California Attorney General’s Office, the May 10 hack included files containing personal information about residents or their family…
Personal data of Astro customers offered for sale online
Vijandren reports: Last year, when we first reported on the massive 46.2 million telco data breach, we cautioned that if strict measures are not put in place, there will always be opportunists trying to make a quick buck by selling off personal data to the highest bidder. Earlier this year, our crawlers stumbled upon an…
BREAKING NEWS: Eleventh Circuit vacates FTC order against LabMD
The Court of Appeals for the Eleventh Circuit has vacated the Federal Trade Commission’s order: This is an enforcement action brought by the Federal Trade Commission (“FTC” or “Commission”) against LabMD, Inc., alleging that LabMD’s data- security program was inadequate and thus constituted an “unfair act or practice” under Section 5(a) of the Federal Trade…