In a move aimed at helping in the retention of its under-16s user base, Snapchat is altering changing its policy before the introduction of to GDPR on May 25. In a move that is markedly […]
The U.S. Food and Drug Administration has released an alert regarding certain Abbott Laboratories implantable cardiac devices that have cybersecurity weaknesses that could possibly be targeted to alter the usability of the devices. A number […]
Hilton Honors has started a repermissioning project for members of its loyalty program members. With the GDPR deadline less than 4 weeks away, it’s a surprisingly rare example of an international company launching a repermissioning […]
As the General Data Protection Regulation (GDPR) come into effect in on May 25 for all European Union (EU) member states, companies and organizations that collect, use, store data on any EU citizen — anywhere […]
The National Institute of Standards and Technology published an updated version of its Framework for Improving Critical Infrastructure Cybersecurity (Cybersecurity Framework) on April 16, 2018. The Cybersecurity Framework was first made available on February 2014 and has […]
Over a period of three and a half years, 1,071 patients of Des Moines Crisis Observation Center, who received medical services at the operated by Polk County Health Services Inc., have been contacted to advise […]
582,174 patients of the California Department of Developmental Services (DDS) is contacting customers to inform them that their protected health information has possibly been compromised. Last February 11, 2018, some people broke into the DDS […]
Writers of The General Data Protection Regulations (GDPR) have defined profiling to include ‘any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to […]
It has recently been revealed that Microsoft are introducing tooling enhancements to assist companies and groups using Azure and Office 365 services to comply with the European Union’s General Data Protection Regulation (GDPR) requirements. Microsoft […]
It has been discovered that UnityPoint Health employee accounts have been compromised and accessed by unauthorized persons. The employee email accounts were initially accessed on November 1, 2017 and went on for a period of […]
Physical and technological failures and glitches occur even in the best-maintained and most secure files. This is why the General Data Protection Regulation (GDPR) requires a plan in place to safeguard and restore data in personal […]
It has been discovered that a former employee of Baptist Health’s West Kendall Baptist Hospital in Miami, FL obtained the credit card details of patients and used the data to make fraudulent purchases. The improper use […]
While the General Data Protection Regulation (GDPR) go into effect in all European Union states on May 25, there is no guarantee that all companies and organizations that do business or employ EU citizens will […]
Physiatry Group Integrated Rehab Consultants based in Chicago, IL-based is issuing notification letters to impacted patients alerting them of the exposure of some of their protected health information in line with HIPAA requirements. However, the […]
A improperly configured security setting on a radiology interface has lead to the exposure of tens of thousands of patients’ protected health data. A multi-specialty physicians’ organization based in Middleton, NY, Middletown Medical, first noticed […]
A recent survey has shown that 80% of those in the healthcare profession plan to request that files containing their personal data be modified or completely deleted. When the General Data Protection Regulation (GDPR) becomes […]
Texas Health Resources, a group providing services to over 1.7 million patients in North Texas, is alerting ‘fewer than 4,000 patients’ that a portion of of their sensitive information may have been obtained by an […]
The new General Data Protection Regulations will be part of EU Member States’ legislation by the end of May. These guidelines are aimed at protecting the rights of EU citizens—wherever they live. Businesses that employ […]
It has been discovered that a number of email accounts of staff members of UnityPoint Health have been accessed by unauthorized individuals. Staff email accounts were first accessed on November 1, 2017 and went on […]
The Department of Health and Human Services’ Office of the National Coordinator for Health IT (ONC) has released a new patient guidebook on health record access. The guidebook goes through how patients can access their health data, […]
The term ‘vital interests’ is not new. In fact, it was written into legislation in Schedule 2 paragraph 4 of the 1998 Act. At the time ‘vital interests’ referred to those of subjects whose data […]
The General Data Protection Regulation (GDPR), which goes into effect on May 28th 2018, applies to all businesses based in the European Union. However, even companies which are not based in a member state of […]
Chesapeake Regional Healthcare has found that two hard drives storing the protected health information (PHI) of around 2,100 patients ave gone missing from the Chesapeake Regional Medical Center campus located in Chesapeake, Virginia. The data saved […]
Oregon has reviewed its data breach notification law to enhance protections for state citizens whose personal information is exposed in a data violation. State governor Kate Brown put her signature to Senate Bill (SB 1551) […]
Even before the General Data Protection Regulation (GDPR) comes into force, in May 2018, major companies have felt the impact of individuals requesting to be forgotten. This happens when an individual asks for personal data […]
WordPress has recently begun testing of its new platform. The purpose of the new version is to make Word Press tools compliant with the new General Data Protection Regulation (GDPR) tools. There is a heavy […]
The Belgian Commission for the Protection of Privacy has created a set of recommendations which outline the way in which to the General Data Protection Regulation (GDPR). On May 25, 2018, the GDPR will enact […]
The use of the words ‘citizen of the European Union’ can be confusing in the context of the General Data Protection Regulation (GDPR). For GDPR compliance requirements, it makes more sense to talk about individuals […]
A recent survey carried out by the Ponemon Institute for ServiceNow has unveiled that healthcare and pharmaceutical companies are not keeping up to date on patching. Weaknesses are not being patched quickly leaving organizations susceptible […]
Verizon has published its yearly Protected Health Information Breach Report which digs deep into the main factors behind the breaches, why they happen, the motivations of internal and external threat actors, and the main dangers […]
A network of physicians linked to more over that 50 medical practices in New Jersey, Virtua Medical Group, has been hit with a massive financial penalty by the New Jersey Attorney General’s Office for failing to […]
A targeted phishing attack carried out on CareFirst Blue Cross Blue Shield has lead to the exposure of 6,800 plan subscriber’ protected health data. The attack was first discovered by CareFirst on March 12, 2018, […]
The Special Agents Mutual Benefit Association (SAMBA) health plan is warning almost 14,000 people in relation to a February 2018 protected health information breach. The data breach targeted eligible family members of clients who were covered […]
Within the next six weeks, the General Data Protection Regulations (GDPR) is set to be enacted in all European Union (EU) member states. These regulations, which come into force on May 25, affect all EU […]
The Arc of Erie County New York (The Arc), a supplierer of person-centered services to people with developmental disabilities, has found that two spreadsheets holding the protected health information of 3,751 patients were accessible on […]
This would seem like a simple question. However, with many things in the soon-to-be-enacted GDPR, there is no simple answer. If read to the letter of the law, anyone who is a European citizen is […]
Law enforcement agencies have notified Cambridge Health Alliance (CHA) that the protected health information of some of its subscibers has been obtained by an unauthorized individual. Everett Massachusetts Police Department alerted, on January 31, 2018, […]
The new General Data Protection Regulations, soon to be part of European Union Member States’ legislation, has specific officials whose job it is to ensure clauses in the GDPR are upheld. Two of these are […]
According to the soon-to-be-implemented General Data Protection Regulations (GDPR) under Article 17, every European Union citizen has the right to request that his personal data file be modified or deleted. What GDPR States Regarding Erasure […]
Copyright © 2023 ComplianceJunction