The Austrian Parliament seized the opportunity, granted by the GDPR’s opening clauses that give European Union member states the discretion to enact their local laws, to pass the new Data Privacy Act that fine-tunes data […]
The Ministry of Internal Affairs in Romania published a draft bill on 5 September 2017 amending the country’s current data protection legal framework ahead of the introduction of the European Union General Data Protection Regulation […]
The Polish Government published draft provisions for the new Data Protection Act that aims to bring the country’s legal framework at par with the forthcoming EU General Data Protection Regulation (GDPR). The significant changes that […]
A former staff nurse, 41-year old Tangela Lawson-Brown from Midway, has been found guilty of wire fraud, stealing government funds, possession of unauthorized access devices and aggravated identity theft by a court in Tallahassee. She […]
If companies thought that the prospect of penalties for GDPR data breaches were being exaggerated, they will be in for a shock when the new EU data protection law takes effect next year. May 2018 […]
The San Antonio, TX, Advanced Spine & Pain Center (ASPC) has advised clients of a possible breach that could have affected as many as 8,362 patients. ASPC became aware of a potential violation of ePHI […]
Over the weekend of August 12-13 an individual obtained access to a file server used by Ashland, MI-based Namaste Health Care and installed ransomware software encrypting data including patients’ protected health information. However, prior to […]
The Government of Luxembourg published the draft bill that creates the National Commission for Data Protection (CNPD) and implementation of General Data Protection Regulation (GDPR). The Bill intends to prepare the legal grounds for the […]
An unencrypted laptop device has been stolen from the automobile of an staff worker of Bassett Family Practice in Virginia, possible leading to the exposure of the protected health information of the Practice’s clients. It […]
Most United Kingdom based companies risk disruption of businesses and huge fines as a result of GDPR non-compliance. UK organizations may either be doing little to comply with the regulations or have failed to involve […]
The findings of research conducted by, statistical software giant, SAS reveal that just 45% of organizations have developed a structured plan in response to the forthcoming General Data Protection Regulation (GDPR). This puts a majority […]
Chase Brexton Health Care has reported that the group experienced a phishing cyber attack on August 2 and August 3, 2017 and may have affected as many as 16,562 patients. The cyber attack involved multiple phishing […]
The National Retail Federation and EuroCommerce has agreed to collaborate on a unified retail industry approach to the implementation of General Data Protection Regulation (GDPR). The retailers will be the major beneficiaries of the collaborative […]
Healthcare organizations often outsource many HIPAA transactions to third-party vendors, yet finding suitable companies that can provide the necessary services can be a time-consuming process. While there is unlikely to be a shortage of companies […]
RiverMend Health, a Augusta, GA-based specialty behavioral health provider has reported an unauthorized person has gained access to the email account of one of its employees after suspicious emails were identified being sent from that […]
Privacy International lived up to its reputation for defending and promoting the right to privacy when it proposed several recommendations meant to strengthen the United Kingdom Data Protection Bill recently. Privacy International is a charity […]
A nurse, Dianna Hereford, who had her employment terminated following an alleged HIPAA violation at Norton Audubon Hospital has lost her appeal against the termination. The claimed HIPAA violation resulted in the termination of […]
September 2017 saw a huge increase in the amount of healthcare data breaches, according to the recently released Breach Barometer report from Protenus which shows there was a serious rise increase. The Protenus report examines […]
The General Data Protection Regulation (GDPR) is structured to give people more control of their own personal data. It is anticipated that these unified regulations will enable businesses and other organizations to leverage the opportunities […]
New ISACA research reveals that a lot more work still needs to be done in information and technology governance. According to the research, cyber security and defenses present the biggest technological challenges to corporate governance. […]
Another unsecured Amazon S3 bucket used by a HIPAA-covered entity has been found by Kromtech Security. The unsecured bucket was storing contained 47.5GB of medical details relating to around 150,000 people. The medical details contained […]
The medical details of in excess of 10,000 patients of a Naperville, IL-based psychiatrist – Dr. Riaz Baber, M.D. – have been located in the basement of an Aurora residence by the female who rented […]
There is a competitive advantage for companies that prepare adequately for the GDPR compliance. The European Union’s new data privacy regulation builds on the foundations of the current data protection regulations. Consequently, GDPR should not […]
At the beginning of 2014 the HHS proposed a new rule for certification of compliance for health plans which would have required all controlling health plans (CHPs) to complete a range of documentation. This would […]
The European General Data Protection Regulation is expected to bring several changes to the business world when it takes effect in less than seven months from now. While it is anticipated that businesses will be […]
Amida Care, the New York-based not-for-profit community health plan, advised that a possible HIPAA breach may have occurred impacting up to 6,231 of its subscribers. The group provides health coverage and coordinated care to Medicaid […]
The latest research published by McAfee reveals that 48% of organizations are likely to move their data to new locations due to General Data Protection Regulations (GDPR). The majority of the survey participants feel that […]
The U.S. House of Representatives has paased the Internet of Medical Things Resilience Partnership Act, aiming to put in place a public-private stakeholder partnership. This partnership will be charged with developing a cybersecurity framework that can […]
A fax machine used by a Doctor at Grand Rapids, MI, based Spectrum Health System was recently found to contain the PHI of almost 20 patients. The fax machine was bought from resale shop by […]
The primary objective of the GDPR is to safeguard the European Union citizens from data breaches. This is particularly important since the world is increasingly becoming data-driven and the conditions are largely different from the […]
According to a recent study by MediaPro, a provider of privacy and security awareness training, best practices for privacy and security are still not well understood by 70% of U.S. employees. For the study, MediaPro questioned […]
May 25, 2018 marks the day when the European Union’s General Data Protection Regulation takes effect. This EU law will have a significant impact on the businesses that process and control EU citizens’ data. WHOIS […]
Texas orthopedic clinic CoPilot are just now informing their patients that their protected health information may have been exposed in a 2015 CoPilot data breach. In October 2015, an online portal managed by CoPilot Provider […]
The United Kingdom Government has published the Data Protection Bill that intend to bring the country’s data protection regime into the twenty-first century. This will give UK citizens more authority over their personal information and […]
A settlement of $264,000 has been agreed with the Vermont Attorney Genera and SAManage USA in relation to the 2016 data breach that resulted in the Social Security numbers of 660 Vermont residents being exposed online. […]
The right for individuals, including employees, to access their own personal data which is held by their employers is a fundamental principle of the current data protection regulation. This tenet will continue to be important […]
Financial organizations such as banks are not new to the threats of data security negligence. The increasing rate and severity of cyber-attacks have made banks consider resiliency against external attacks their top operational risk priority. […]
A Catholic health system based in Vancouver, WA PeaceHealth, has revealed discovered that a former member of staff had accessed the medical history of almost 2,000 patients without any an adequate work reason. The unauthorized […]
Almost 4,000 people have potentially had their sensitive patient data exposed in Spokane, WA after a laptop computer once used by the Mann-Grandstaff VA Medical Center (MGVAMC) has been reported as missing. The laptop device was paired with […]
Nebraska-based CBS Consolidated Inc., operating as Cornerstone Business & Management Solutions, completed a routine audit of system logs on July 10, 2017 and discovered a seemingly strange account on their servers. This case further highlights […]
Hacking group TheDarkOverlord, after an apparent period of inactivity, has claimed responsibility for another successful attack on a U.S. healthcare supplier. This time the victim was Mass-based SMART Physical Therapy (SMART PT). The announcement of […]
A HIPAA violation at Mercy Health Love County Hospital may have exposed the private information of in excess pf 13,000 patients in Oklahoma. On June 23, 2017, the health centre found that a member of […]
Copyright © 2023 ComplianceJunction