From their notice: Diagnostic Radiology & Imaging, LLC (or “DRI”) operates multiple imaging facilities in Greensboro, North Carolina under the names Greensboro Imaging and The Breast Center of Greensboro. On January 31, 2018, DRI became aware of an impermissible disclosure of limited health information about approximately 800 patients. An investigation revealed that on November 11,…
NYC Health + Hospitals/Harlem notifies 595 patients of missing laptop with their protected health information
From their notice of March 30, 2018: NYC Health + Hospitals this week began to notify 595 NYC Health + Hospitals/Harlem patients about the possible disclosure of some of their protected health information (PHI). The possible disclosure—a laptop computer missing from the facility—occurred on January 25, 2018, and was discovered on January 29. The PHI…
Hong Kong hospital patient records left in a taxi
Su Xinqi and Emily Tsang report on the case of a missing brain. Okay, that’s unsettling, I agree, but I’m posting a link to their coverage because of what else was in the story: Meanwhile, in a separate incident, Prince of Wales Hospital apologised on Friday evening after a staff member lost about 100 sheets…
Concerns teen being ‘railroaded’ in privacy breach to cover government slip
Jon Tattrie reports: Software and privacy experts say an embarrassed Nova Scotia government seems to be seeking a scapegoat, following Halifax police’s quick arrest of a 19-year-old man for accessing private documents publicly visible on a provincial website. The teenager is charged with unauthorized use of a computer, which carries a prison term of up to 10 years. “In order to break…
Uber Agrees to Expanded Settlement with FTC Related to Privacy, Security Claims
Uber Technologies, Inc. has agreed to expand the proposed settlement it reached with the Federal Trade Commission last year over charges that the ride-sharing company deceived consumers about its privacy and data security practices. After the announcement of last year’s proposed settlement, the Commission learned that Uber had failed to disclose a significant breach of…
Personal information of 1 million potential college applicants ‘exposed inadvertently’
Emily Tate reports that a vendor in the higher education space exposed more than 1 million potential college applicants’ information due to a misconfigured rsync backup: The data — which included names, phone numbers, email addresses, home addresses, high school graduation years and, in a few cases, dates of birth and Social Security numbers —…