It seems like a breach that I never mentioned on this blog was the downfall of a firm. In December, 2011, Impairment Resources, LLC was the victim of a burglary. They reported the incident and I had included it on DataLossDB.org, but didn’t think much of it as there was nothing wildly unusual in their reports to suggest…
Search Results for: patient
A horrific privacy breach averted, but why did Anonymous remain silent? (UPDATED)
I couldn’t fall asleep last night. It’s not often that a data breach worries me, but what I read online had concerned me. According to a hacker calling himself @PabloEscobarSec, he had hacked the British Pregnancy Advisory Service (BPAS), and intended to leak the names of all of the women who had used the service….
New York Court Finds Clinic Not Liable for Employee's Disclosure of PHI
I can picture a lot of lawyers breathing a sigh of relief over this one. Robyn Sterling writes: A federal district court dismissed an action against an employer alleging vicarious liability for an employee’s dissemination of a patient’s protected health information (PHI) related to treatment for a sexually transmitted disease (STD). Specifically, the court found…
AU: St Vincent's Hospital in Melbourne used confidential medical files to get donors
Jonathan Marshall reports: Fundraisers for St Vincent’s Hospital in Melbourne used patients’ confidential medical files to beg for money after they received care. The “very successful” scheme ran for “years and years” until a patient with knowledge of privacy legislation complained to hospital management. […] Victoria’s Health Records Act prohibits the release of any information…
UK: One member of staff sacked and another reprimanded after data breaches at Northampton General Hospital
Nick Spoors reports: One member of staff was sacked and another severely reprimanded for accessing details of Northampton General Hospital patients they were not treating, a new report reveals. The report on data breaches at NGH in 2011, said measures were now in place to guard against information falling into the wrong hands, but warned…
UK: ICO reveals four new undertakings following data breaches
From the ICO: Durham University breached the Data Protection Act after disclosing personal information in training materials published on its website, the Information Commissioner’s Office (ICO) said today. The personal data was contained in screenshots used to demonstrate the use of particular University systems and included details such as names, addresses and dates of birth…