Oops. Via WBUR, we learn of a breach involving Boston Public Schools. Here’s the statement from BPS’s web site: The Boston Public Schools is changing the design of Boston OneCard student ID badges, changing MBTA CharlieCard assignments and is changing library card numbers for students following a vendor’s loss of a flash drive that contained…
Ca: Norfolk General Hospital notifies 1,300 of privacy breach
Monte Sonnenberg reports: A nurse at Norfolk General Hospital has been fired for inappropriately accessing patient files. The hospital reported Tuesday that the privacy breach occurred from October, 2004, to March of this year. On Thursday, NGH notified 1,300 patients in writing that their privacy may have been violated. Read more on Brantford Expositor. If…
Income and Capital Growth Strategies notifies clients after hack
Income and Capital Growth Strategies Inc. is notifying clients of a hack that occurred between July 12 and July 15 of this year. The breach was discovered on July 15. In their notification letter dated August 8, Doug Thorburn, the principal of the firm, writes: We have recently discovered unauthorized access to our computer network…
Caledonia Home Health and Hospice notifies patients of stolen Netbook
Vermont-based Caledonia Home Health and Hospice is notifying patients after Netbook was stolen from an employee’s home on July 20. In a letter dated August 6 to those affected, the hospice writes: The Netbook contained the home health program, Palmwyse in which patient protected information, including social security numbers, was documented. A police report has been filed…
Sensitive Aberdeen child data found in Dundee skip
Frank Urquhart reports that Aberdeen City Council has ordered an urgent investigation after “extremely sensitive” child welfare documents were found at a council dump in Dundee. The documents include home addresses and medical details of social work service users and other personal information. Read more on The Scotsman.
ICO announces two new undertakings
The Information Commissioner’s Office announced two undertakings that were issued. Northern Health and Social Care Trust 13 August 2013 An undertaking to comply with the seventh data protection principle has been signed by Northern Health & Social Care Trust. This follows a number of security incidents which led to a formal investigation into the Trust’s…