Purna Nemani reports: A shark-bite victim claims a Honolulu hospital violated his privacy by photographing and posting on the Internet a picture of his “gaping leg wound,” without his consent, “while he was completely helpless, undraped, and in a life-threatening and traumatic shock condition.” Todd Murashige claims The Queen’s Medical Center violated HIPAA protections and…
AIB tells tribunal employee dismissed for accessing accounts
Genevieve Carbery reports: Unauthorised access to the bank accounts of 13 employees and three customers by a former Allied Irish Banks worker was “absolutely not” acceptable, a senior AIB manager said yesterday. Former AIB Capital Markets employee Brian Purcell (38), from Dublin, was dismissed in April 2009 after the bank discovered he had accessed the…
OH: Resident reports theft of laptop computer to UA police
From the Upper Arlington Police Beat: A laptop computer containing personal information and confidential medical records was reported lost and presumed stolen after its owner accidentally left it at a business on the 3200 block of Tremont Road on Aug. 25, according to Upper Arlington police reports. The owner has contacted the credit bureau about…
White paper: The Case for Informed Consent
PPR has issued a new white paper. From their press release: Patient Privacy Rights (PPR), the nation’s leading health privacy watchdog released a white paper entitled, “The Case for Informed Consent: Why it is Critical to Honor What Patients Expect: for Health Care, Health IT and Privacy.” The paper is designed to be a primer…
FL: Laptop theft results in data breach for P.K. Yonge employees, students
From the University of Florida: The personal information of more than 8,300 current and former students and employees of P.K. Yonge Development Research School was on a laptop computer stolen last month. P.K. Yonge is a kindergarten-through-grade-12 laboratory school affiliated with University of Florida’s College of Education. The computer files contained employee payroll, employee parking…
UK Information Commissioner (ICO) Enforcements and Website Hacks
“alexisfitzg” blogs: I did a brief analysis of the enforcement notices that have been handed out by the UK Information Commissioner (ICO) to organisations found to be in breach of the Data Protection Act. The idea was to see how many incidents were a result of a website hack (SQL Injection, XSS etc.) About 100…