Billy Wharton writes in CounterPunch: The mega drug store chain Rite Aid recently agreed to pay a $1 million fine to stave off a full investigation by the Federal Trade Commission (FTC) into practices that may have compromised customer records. The agreement was prompted by news reports that Rite Aid stores in several locations had…
Search Results for: HCA
With No Harm Threshold, Nearly All Breaches Substantiated in CA
Dom Nicastro provides some interesting data from California, where there is no “harm threshold” in mandated reporting requirements for breaches involving medical records: Since California’s new law went into effect last year, the state has received 3,766 breach reports. …. California’s investigations team has completed reviews of 1,953. It found that 98.7% of those breaches…
Laptop stolen from U Kentucky had info on newborns and mothers
From the University of Kentucky: The University of Kentucky is notifying 2,027 people of a breach of protected health information. Between June 18 and June 21, 2010, a laptop computer containing information from the Newborn Screening Program was stolen from the Department of Pediatrics Newborn Screening Program. The theft was reported to the UK Police…
Laptop stolen from U Kentucky had info on newborns and mothers
From the University of Kentucky: The University of Kentucky is notifying 2,027 people of a breach of protected health information. Between June 18 and June 21, 2010, a laptop computer containing information from the Newborn Screening Program was stolen from the Department of Pediatrics Newborn Screening Program. The theft was reported to the UK Police…
HHS Committee Sanctions Health IT Security Proposal
Anthony Guerra reports that there was heated debate at the meeting this week over recommendations generated by the IT Policy Committee’s “tiger team” on privacy and security: Devan McGraw and Paul Egerman, chair and co-chair, respectively, of the Department of Health and Human Services’ Health IT Policy Committee’s privacy and security team, entered the full…
Data Security Breach Bill Calls for Strict Notification
Dom Nicastro writes: A data breach bill filed August 5 requires entities that hold consumers’ sensitive information to create a robust data compliance protection plan and holds them to strict breach notification requirements. U.S. Senators Mark Pryor (D-AR) and Jay Rockefeller (D-WV) filed the “Data Security and Breach Notification Act of 2010,” which would be…