From Protection of the Department of Energy’s Unclassified Sensitive Electronic Information, DOE/IG-0818: The Department of Energy and its contractors store and process massive quantities of sensitive information to accomplish national security, energy, science, and environmental missions. Sensitive unclassified data, such as personally identifiable information (PII), official use only, and unclassified controlled nuclear information require special…
UK: ICO to remind doctors who treat patients privately of their obligations to notify
Doctors who treat patients privately are being urged by the Information Commissioner’s Office (ICO) to make sure they are complying with the Data Protection Act. The privacy watchdog is launching a new initiative to ensure doctors operating privately notify with the ICO that they are handling people’s personal information. People’s individual health records are some…
FTC issues Health Breach Notification Rule
The Federal Trade Commission (“FTC†or “Commissionâ€) is issuing this final rule, as required by the American Recovery and Reinvestment Act of 2009 (the “Recovery Act†or “the Actâ€). The rule requires vendors of personal health records and related entities to notify consumers when the security of their individually identifiable health information has been breached….
Three indicted for hacking Heartland, 7-Eleven, and Hannaford; Over 130 million credit and debit card numbers stolen
An indictment [pdf] was returned today against three individuals who are charged with being responsible for five corporate data breaches, including the single largest reported data breach in U.S. history, announced Acting U.S. Attorney Ralph J. Marra, Jr., along with Assistant Attorney General of the Criminal Division Lanny A. Breuer and United States Secret Service…
MP’s password accidentally leaked
Dizzy of the Dizzy Thinks blog was searching on Google for information on an article by Gisela Stuart MP for Birmingham Edgebaston and found a lot more than he expected. The results returned a link to an entry on the MP’s own web site which included her user name and password for managing the sites…
Laptop theft prompts NKU letter
A Northern Kentucky University employee’s laptop computer – which contained personal information about some current and former students — was stolen from a restricted area last month, university officials said. […] The computer was taken July 22, according to a letter from Sara Sidebottom, the university’s vice president for legal affairs and general counsel. Cole…