The Great Ormond Street Hospital for Children NHS Foundation Trust has signed an undertaking with the Information Commissioner’s Office following four separate incidents in the last 18 months where letters containing medical information have been sent to the wrong address. In most of these cases, the letters had been sent out by temporary or bank members of staff…
UK: Foyle Women’s Aid undertaking and follow-up
I guess the Information Commissioner’s Office (ICO) doesn’t publicly post all undertakings, as we are first finding out about an August undertaking in November, when a follow-up was conducted and disclosed. In June 2012, the ICO learned that a folder belonging to a Criminal Justice Support worker employed by Foyle Women’s Aid, was left in a…
UK: Council criticized for data protection breaches
BBC reports: A report by the Information Commissioner said “immediate action is required” to ensure Anglesey council complies requirements (sic). It said “physical security and storage standards relating to manual records within the council’s offices were not appropriate”. The council says it has agreed an action plan to address concerns and said work was already…
NJ: Two Defendants Admit Roles In $65 Million Stolen Identity Income Tax Refund Fraud Scheme
Two defendants have admitted their roles in one of the nation’s largest and longest running stolen identity refund fraud schemes ever identified, U.S. Attorney Paul J. Fishman announced yesterday. The scheme caused more than 8,000 fraudulent U.S. income tax returns to be filed, which sought more than $65 million in tax refunds, and which resulted…
UCSF notifying 8,294 gastroenterology patients whose PII and PHI were on laptop stolen from doctor's car
Statement from UCSF: UC San Francisco is alerting some individuals to the theft of a physician’s personal laptop computer that contained personal and health information. While the physician believed the laptop was encrypted, this could not be confirmed. As a result, the individuals involved are being notified. The security of protected health information at UCSF…
Flamingo Resort and Spa notifying employees after virus may have exposed payroll information
Flamingo Resort and Spa is notifying all current and former employees after they discovered that a virus on the payroll computer might have allowed a hacker to access their personal information, including Social Security number, date of birth, address, phone number, and for those used direct deposit, bank routing numbers. The virus was discovered within…