Impact of CCPA on Business The Californian Governor Jerry Brown signed the Californian Consumer Privacy Act (CCPA) into law in June 2018. The CCPA has revolutionised the data privacy rights of Californian residents. CCPA offers […]
A new study by the consultancy firm Censuswide has revealed the extent to which employees are being tricked by phishing emails and how despite the danger of a data breaches and regulatory fines, many firms […]
Following the installation of ransomware and malware on a server belonging to Mind & Motion Developmental Centers of Georgia, it has been revealed that the group responsible which may have been able to access to […]
Almost 48,000 patients and guarantors may had their the payment information compromised Baylor Scott & White Medical Center in Frisco in a privacy breach which was noticed recently. The medical center, which is jointly operated […]
The Irish Data Protection Commission (DPC) is investigating another potential General Data Protection Regulation Breach by Facebook following a statement from the social media company admitted a glitch may have exposed unposted photos from up […]
6,450 patients of Prairie Fields Family Medicine based in Fremont, NE are being made aware that their protected health information may have been compromised after it was included in an unencrypted spreadsheet that was sent […]
Google has revealed that it has taken the decision to make a number of amendments to its terms of service and privacy policy, amendments which will now refer to Ireland as the location of its […]
Consumer body Which? has conducted an investigation that has revealed several large retailers may be in breach of the European Union’s General Data Protection Regulation (GDPR) rules in how they issue e-receipts to their customers. […]
The winners of the Easy EHR Issues Reporting Challenge have been announced by the Department of Health and Human Services’ Office of the National Coordinator for Health Information Technology (ONC). At present, reporting EHR safety […]
Cancer Centers of America’s Western Regional Medical Center, located in Bullhead City, has revealed that a staff email account has been hacked following a phishing email attack. The phishing email seems to have been broadcast […]
In a turn up for the books the Irish Data Protection Commission (DPC) is being investigated for possible General Data Protection Regulation breaches in relation to the body’s data protection officer being prevented from successfully completing their […]
Georgia Spine and Orthopaedics of Atlanta (GSOA) is contacting thousands of patients to make them aware that some of their protected health information has been made accessible, and possibly stolen, due to a phishing attack. […]
The private personal data of approximately 500 million people has been obtained in a hacking attack on Marriott International according to a a statement filed with US regulators by the hotel chain last Friday, December 1. […]
AccuDoc Solutions Inc., a supplier of healthcare billing services, has discovered a major data privacy breach in which the protected health information of 2,650,000 patients of Atrium Health was accessed by hackers. Morrisville, NC-based AccuDoc Solutions […]
A United States Senate subcommittee has revealed that it is working on a draft of a GDPR-style legislation for the United States. Senators Richard Blumenthal (Democrat) and Jerry Moran (Republican) are putting together a bipartisan […]
FHN Healthcare, which runs FHN Memorial Hospital in Freeport, IL, and a group of family healthcare centers located in northwest Illinois, has discovered that a laptop computer storing the protected health information of 4,458 clients […]
A group of European Union-based consumer watchdogs have submitted a data privacy compliant, under the new General Data Protection Regulation legislation, against Google in the belief that the company is using methods to record web users’ […]
Florida-based Key Dental Group has made contact with its patients about a suspected HIPAA breach which may have led to the unauthorized release of their protected health information (PHI). After amended its electronic medical record […]
A warning has been issued by Instagram that a number of users of the social media platform have had their password details exposed by a security leak. Ironically, this breach occurred due to a flaw […]
In October, the Centers for Medicare & Medicaid Services (CMS) revealed that the HealthCare.gov online portal had been hacked and the sensitive data of around 75,000 individuals had possibly been obtained. This week, the CMS […]
The United Kingdom’s Information Commissioner’s Office (ICO) has found that the Washington Post online subscription options are not in compliance with the European Union’s General Data Protection Regulation (GDPR). The online subscription options are not subjected to […]
The EU introduced the General Data Protection Regulation (GDPR) in May 2018. Since its implementation, GDPR has changed the way that businesses handle, collect, and process consumer data. It is a landmark piece of legislation […]
Vancouver, Washington, based Southwest Washington Regional Surgery Center has been hit by a phishing attack that has lead to the exposure of 2,393 patients’ protected health information. The breach was restricted to a single staff […]
Virginia based Inova Health System has started to contact 12,331 patients to advise them that some of their protected health information has been obtained by an unauthorized person. Law enforcement contacted Inova Health System on […]
Dutch investigators are conducting an investigation following claims that Microsoft Office is in breach of the European Union General Data Protection Regulations in relation to the data the software has been gathering including the content […]
The operators of content Management platform WordPress have issued an advisory urging users to refresh the WP GDPR Compliance plug-in as soon as possible due to a flaw in the software leading to a potential […]
Upstate University Hospital in Syracuse, NY, is getting in touch with 1,216 patients to advise them that some of their protected health information (PHI) has been impermissibly accessed by a former member of staff. Upstate […]
Privacy International, a UK-based registered charity that defends and promotes the right to privacy across the world, last week filed a number of complaints against US-based Companies to European based Data Protection bodies concerning suspected breaches of the General Data […]
A $200,000 settlement has been agreed with Best Medical Transcription in relation to HIPAA breaches that were discovered during an investigation of a 2016 breach of 1,650 clients’ protected health information. Best Medical Transcription, a […]
Facebook is facing the wrath of the European Union’s General Data Protection Regulation (GDPR) once again following a complaint made by the UK Information Commissioner Office (ICO) to the Irish Data Protection Commission (DPC) in […]
According to the most recent Beazley’s Q3 Breach Insights Report, Cyber Criminal campaigns attacks are increasing once again and healthcare is the most targeted sector. Ransomware attacks on healthcare groups comprised 37% of those managed […]
A potential General Data Protection Regulation breach impacting members of the firm’s loyalty and rewards scheme has been reported by the Radisson Hotel Group. The Radisson Hotel Group, headquartered in Brussels, Belgium, has chain accounts for […]
Around 10,000 patients of Raley’s Pharmacy are being contacted to inform them that some of their protected health information (PHI) has potentially been impacted in a data breach. On September 24, 2018, a laptop computer […]
In the United Kingdom, law firm RPC released a report which reveals that the average fine for failing to protect against data breaches has doubled to £146,000 in the year to 30 September 2018. ICO […]
Jones Eye Clinic and its affiliated surgery center, CJ Elmwood Partners, L.P, in Sioux City, IA has revealed that the protected health information of up to 40,000 of its patients may have been compromised. The […]
Apple CEO Tim Cook, speaking at a conference on data privacy in Brussels, has called for the United States to introduce data protection legislation as stringent as the European Union’s General Data Protection Regulation (GDPR) […]
Michigan Medicine is contacting over 3,600 patients to make them aware of an impermissible disclosure of a restricted amount of their protected health information. In early September 2018, the Michigan Medicine Development Office initiated a […]
A survey of 145 US corporate directors of public company boards conducted by BDO USA during August 2018 has revealed that eight out of ten companies have taken steps to ensure they are complying with necessary […]
The U.S. Food and Drug Administration (FDA) has released a warning about flaws in certain Medtronic implantable cardiac device programmers which could possibly be targeted by hackers to alter the functionality of the programmer during […]
HIPAA-covered organizations must take every possible precaution to ensure protected health information (PHI) sent and received by email is safeguarded both at rest and in transit in order to prevent unauthorized access to patient data. […]
The British Standards Institution (BSI) has released the results of a study which show that one in six European business are not sufficiently ready to face the threat of a data breach. This is particularly […]
If your company is not established in the European Union, however, processes the personal data of EU residents and does not have an office located in the European Union, you may have to appoint an […]
Biomarin Pharmaceutical, based in Novato, CA-based has discovered two staff email accounts have been compromised due to a phishing attack in which a non-permanent employee’s login details were obtained by the hacker. The attack was […]
It has been revealed that Google will be closing down its social media platform Google+ in light of an investigation being launch by the Data Protection Authority in Ireland into reports that it failed to […]
Letters have been mailed to approximately 21,000 individuals on medical assistance by the Minnesota Department of Human Services to alert them of a potential breach of their protected health information (PHI) due to two phishing […]
The Data Protection Authority (DPA) in Ireland is investigating social media giant Twitter over possible GDPR non-compliance after the company did not comply with a user request for information. A privacy researcher at the University […]
The Department of Health and Human Services’ Office of Inspector General (HHS OIG) is highlighting awareness of the measures it implements to address cyberthreats within the HHS and the healthcare sector as a whole and […]
An interim injunction has been issued by Würzburg Regional Court against a lawyer who displayed an unfinished Privacy Policy on her firm’s website which also included an unencrypted and unprotected contact form. In making the […]
A data breach, that saw the highly sensitive protected health information of 93 lower-income HIV positive individuals stolen by unauthorized individuals, will go to trial after a lawsuit submitted by Lambda Legal on behalf of […]
It is vital for all staff members in the healthcare sector to have a firm grasp of what a HIPAA violation is and how to report one. Understanding what a HIPAA violation entails should be […]
In the UK consumer credit reporting agency Equifax has been fined £500,000 by the Information Commissioner’s Office (ICO) for failing to safeguard millions of UK citizens’ personal data when a cyber attack happened in 2017. Private personal […]
A not-for-profit 115-bed community hospital in Ogdensburg, NY, Claxton-Hepburn Medical Center has sacked several employees for accessing patient health records without official permission.The PHI breaches were identified during an internal review. It is not yet obvious […]
Uber, the peer-to-peer ridesharing, taxi cab, food delivery, bicycle-sharing and transportation network company has settled a fine in relation to a 2016 cyber-attack that exposed data from 57 million customers and drivers for $148m. The payment […]
Blue Cross and Blue Shield of Rhode Island (BCBSRI) is contacting 1,567 plan subscribers that a portion of their protected health information has been impermissibly made accessible by one of its business partners. A BCBSRI vendor […]
Facebook has revealed that its engineers have discovered, and addressed, a serious data breach on September 25, last Tuesday, which affected approximately 50m account holders. Impacted users have been sent a notification and automatically logged […]
A former staff member of the emergency department of Brooklyn’s Kings County Hospital is accused of stealing the protected health information of at least 100 patients while employed there. The same person is accused of […]
AggregateIQ, a Canadian-based analytics company which acted on behalf of the Vote Leave campaign, has been issued with the first ever UK GDPR notice by the Information Commissioner’s Office (ICO) in relation to business carried out […]
According to a report by the Wall Street Journal Amazon is being investigated due to allegations that some of its staff members have been leaking consumer and company data in return for payment. The claims […]
The New York Attorney General has fined the Arc of Erie County $200,000 by breaching HIPAA Rules when it did not secure the electronic protected health information (ePHI) of its customers. The Arc of Erie […]
Several studies have been conducted to assess the cost of cybercrime in the United States, although there is little data on the cost of cyberattacks in Germany. That has been addressed with a recent survey […]
A GDPR complaint has been filed by the operators of the Brave internet browser with authorities in Ireland and the UK in relation to privacy breaches caused by Google and other ad tech companies. Chief […]
Honolulu-based Fetal Diagnostic Institute of the Pacific (FDIP) was hit by a ransomware attack on June 30 this year. File-encrypting software was uploaded to an FDIP server and encrypted a wide range of file types […]
Google stated its case against the CNIL (France’s data protection agency) in relation to the GDPR ‘right to be forgotten’ to the Court of Justice of the European Union (CJEU) on Tuesday 11 September. The CJEU […]
Reliable Respiratory, a Norwood, MA-based respiratory care organisation has been subjected to a phishing attack that has impacted several thousand of its clients. A cyberattack was first noticed on July 3, 2018, after the detection […]
Due to a computer hack accessing credit card data approximately 380,000 customers, British Airways will likely to be the first major company to face a test, and possibly extremely high financial penalties, under the European […]
The New Mexico Department of Health is trying to ascertain how the private medical records of some of its clients came to fall from a truck while being taken from the hospital to a secure […]
From October 3, Apple App Store rules will oblige developers will have to disclose how users’ personal data is used, safeguarded and shared under a new privacy policy. In the release posted on the App […]
The Health Insurance Portability and Accountability Act (HIPAA) brought in many new regulations for healthcare groups, but who polices HIPAA? Which federal departments are charged with making sure HIPAA Rules are adhered to by covered […]
A mailing mistake that was sent to Missouri Care subscribers reminding them to reserve well-child visits has resulted in the accidental disclosure of the personal data of approximately 20,000 children to other Missouri Care subscribers. […]
A new report by cyber security company NTT Security has revealed that 66% UK senior executives admit their company does not have adequate security cover to deal with a security breach the financial impact of […]
French data regulator CNIL has issued a warning to two French data companies, Fidzup and Teemo, for adhering to the European Union’s General Data Protection Regulation. The companies in question operate as location intelligence vendors. They […]
Authentic Recovery Center, a West Los Angeles-based drug and alcohol treatment center, is contacting 1,790 clients to inform them that some of their personally identifiable information (PII) and protected health information (PHI) may have been […]
Many healthcare groups have considered the Zoho Office Suite as an alternative software package to organize workflows, but can Zoho be deemed HIPAA compliant? Zoho: What is it? Based in Pleasanton, CA Zoho is developer of […]
New figures released by law firm EMW in relation to complaints received by the Information Commissioner’s Office (ICO) in the United Kingdom have revealed that the number of data protection complaints submitted to the office […]
A survey carried out by Ovum for analytics firm FICO has pointed to the fact that there has been a sharp rise in companies signing up for cybersecurity insurance, but the healthcare sector in general […]
ICANN has appealed the most recent decision made against it in the Appellate Court of Cologne. The organisation has argued that the German legal body has made a mistake in decreeing that they had not “sufficiently […]
Central Colorado Dermatology (CCD) has made contact with over 4,000 clients that some of their protected health information (PHI) has possibly been obtained by cyber criminals during a ransomware attack on its IT systems. An […]
Most HIPAA covered bodies, business associates, and healthcare workers take lots of precautions care to ensure HIPAA Rules are adhered to, but what happens when there is accidental HIPAA violation? How should healthcare workers, covered […]
A report from digital media company GlobalData published in July 2018, indicates that only 54% of North Americans in the global pharmaceuticals industry believe they are informed about the new European Union General Data Protection […]
InterAct of Michigan, a provider of mental health and substance abuse treatments through health centers in Kalamazoo and Grand Rapids, has found an unauthorized person has obtained access to the email account of a staff […]
Irish Telecommunications company eir has revealed that almost 37,000 of its customers have been impacted by a General Data Protection Regulation (GDPR) breach which occurred following the theft of a staff laptop. The laptop, which […]
The result of a recent study by the Reuters Institute at the University of Oxford indicates that the number of tracking cookies on EU news sites has decreased by 22% since the introduction of the […]
Over 258,000 people have had their personal health information, personal identification information and/or tax information accessible online due to a data security incident in Adams County, Wisconsin. A possible security breach was discovered on March […]
A recent report published by consent management platform Quantcast Choice has revealed that, for European Union (EU) domains an average consent rate over 90 percent is being experienced. The signifigance of this is further emphasized when it is […]
A group of urgent care clinics in Atlanta, Chicago, Austin, Dallas, Fort Worth, and Houston, MedSpring Urgent Care has identified a breach that occurred when an unauthorized individual has gained access to an email account […]
Hundreds of U.S. news websites have been unavailable in Europe since the May 25 introduction date of the European Union’s General Data Protection Regulation as they remain uncompliant in relation to the new legislation. Due […]
Jefferson City, Missouri based SSM Health St. Mary’s Hospital is contacting hundreds of thousands of patients to warn them that some of their protected health information has been left unprotected and may have have been […]
The Health Insurance Portability and Accountability Act (HIPAA) is a landmark piece of data protection legislation in the USA. What is it that makes HIPAA so significant? What reform did HIPAA bring in and what […]
It has been revealed that a data breach at Dixons Carphone actually saw the personal data of 10 million people accessed, a much higher number than first indicated. A statement released by Dixons on Tuesday […]
A not-for-profit health system that operates Central Washington Hospital, Wenatchee Valley Hospital and a dozen satellite clinics in Central and North Central Washington, has experienced a data breach incident involving a staff member’s email account […]
A huge UnityPoint Health phishing attack has been reported to the HHS’ Office for Civil Rights (OCR) , one in which the protected health information of up to 1.4 million patients could have been obtained by […]
Despite being hit with a $5bn EU fine and concerns in relation to the effect of the new EU General Data Protection Regulation (GDPR), Alphabet, a Google-owned company, registered a second quarter revenue of $32.7 billion, […]
A mistake has resulted in the exposure of more than 19,000 patients’ protected health information (PHI) took place during a software upgrade on a server owned by a transcription service provider. Patients impacted by the […]
Following the introduction of the European Union’s General Data Protection Regulation (GDPR) on May 25 this year, the number of daily active Facebook users in Europe dropped by 3 million people from the first quarter, […]
Does Azure comply with HIPAA? Can Microsoft’s cloud services be implemented by HIPAA covered bodies without breaching HIPAA Rules? Many healthcare groups are considering shifting some of their services to the cloud, and a large […]
A FIFA player used GDPR to research all of the the data that video game producer EA held on him and discovered that he had spent $10,000 playing the game over a two-year period. The […]
A class action lawsuit submitted after a staff-member related data breach at Flowers Hospital in Dothan, Alabama in 2014 is likely to be settled. The settlement is awaiting final court approval, although approval seems imminent […]
The Federal Communication Commission has released a Declaratory Ruling and Order to clarify TCPA rules in relation to HIPAA and patient telephone calls. Some healthcare suppliers have had difficulty understanding TCPA rules in relation to […]
Copyright © 2023 ComplianceJunction