The Information Commissioner’s Office (ICO) has found Birmingham Children’s Hospital NHS Foundation Trust to be in breach of the Data Protection Act (DPA). The Information Commissioner was initially informed of a data security breach by the Trust after two unencrypted laptops containing personal information relating to 17 patients were stolen from the Medical Day Centre….
Patient Says Doctor Let Newspaper Peep on Medical Marijuana Exam
Tish Kraft reports: A patient claims her doctor allowed a newspaper reporter to surreptitiously videotape her while she discussed with the doctor the medical use of marijuana for chronic pain. The patient claims Dr. Cristal Speller and Natural Care for Wellness violated medical privacy and wiretapping laws, and that publication of the story in the…
CT: Missing computer drive contains teacher retirement data
Linda Conner Lambeck reports: Teachers around the state received a letter last week warning them that a computer flash drive containing retirement fund data is missing. The letter from the State Teacher’s Retirement Board said the flash drive contains encrypted 2007-08 member annual statement data. [….] It’s not known what kind of data is on…
Akron man could face 40 years in prison after stealing credit card info from mother’s business
Tonya Sams reports: A 46-year-old Akron man faces a maximum of 40 years in prison after pleading guilty Friday in Summit County Common Pleas Court for stealing credit card information from customers at his mother’s dry cleaning business and writing bad checks to the state. Michael Bukuts was guilty of engaging in a pattern of…
Marsh and Mercer report lost backup tape (update 2)
On June 23, insurance broker Marsh and Mercer notified the New Hampshire Attorney General’s Office that in April, a back up tape being transported by a third party courier between Marsh offices was lost. The tape contained employee benefits information such as names, addresses, Social Security Numbers, dates of birth, and drivers’ license numbers, and…
Ohio agency accidentally exposes personal data of disabled – twice
Alan Johnson reports: Personal and sensitive medical information on 200 developmentally disabled Ohioans was accidentally posted twice on a state computer network in the past 10 days. Officials with the Ohio Department of Developmental Disabilities said yesterday that the incident was not a “data breach” because the general public never had access to the information….