A recent survey conducted by the DMA, formerly the Direct Marketing Association, has revealed that barely a quarter of marketing staff were properly trained on General Data Protection Regulation legislation before it was introduced on […]
Who can sue for a HIPAA violation? There is no private cause of action in HIPAA, so a patient cannot sue for a HIPAA vbreach. Even if HIPAA Rules have clearly been broken by a […]
ICS-CERT has released a warning after identifying eight vulnerabilities in version 8 of Natus Xltek NeuroWorks software implemented in Natus Xltek EEG medical products. If the weaknesses are successfully exploited they could allow a hacker […]
Nomadix Inc., a provider of gateways for wired and wireless connectivity solutions for public access networks and enterprises has revealed that its complete range of products is now adhering with the General Data Protection Regulation (GDPR). This […]
After what is believed to have been inappropriate accessing of patient health records by staff members, Washington Health System has decided to suspend several staff members while the privacy breach is reviewed. While it has […]
GDPR compliance in the cloud raises many challenges for businesses attempting to comply with the EU’s new data security and privacy rule. Not only is it necessary for businesses using services hosted in the cloud […]
A father, Jozef Dmowski, of a Polish girl has made an allegation that doctors and rescue workers refused to inform him of the location of his injured daughter, after she was involved in an accident, due […]
An investigation is currently underway into one of the UK’s biggest data breaches at a single company following unauthorised access to 5.9 million Dixons Carphone customers’ cards being made available. Dixons Carphone discovered the massive data breach […]
HIPAA password requirements state that processes must be implemented for setting up, amending, and securing passwords unless an alternative, equally-effective security measure is adapted. We feel that the best manner to comply with the HIPAA […]
New guidance for HIPAA-covered bodies to streamline HIPAA authorizations for uses of protected health information for research purposes has been released by the Department of Health and Human Services’ Office for Civil Rights , as […]
Belgium’s Parliament published a draft law on June 12 that aims to bring the country’s data protection legislation in line with the European Union’s General Data Protection Regulation, which became enforceable on May 25th. The draft legislation […]
Arsenal Football Club has discovered that a GDPR breach occurred after the private details of club members were mailed, in error, to other club member when asking them to renew their membership of the football […]
The results of a HIMSS survey has revealed that medical device security is a strategic focus for most healthcare groups, yet fewer than 50% of healthcare providers have an approved budget for addressing security weaknesses […]
A phishing attack has been experienced by the Florida Agency for Persons with Disabilities (FAPD), which provides support services for people with disabilities such as autism, cerebral palsy, spina bifida, and Downs syndrome. The phishing […]
On May 25 this year the General Data Protection Regulations (GDPR) legislation became enforceable in the European Union (EU). GDPR is aimed at protecting the personal data of every EU employee, every EU client, and […]
A former member of staff at the Veteran Affairs Medical Center located in Long Beach, CA who illegally stole the protected health information (PHI) of over 1,000 patients has been given a three-year jail sentence. […]
Two HIPAA-covered organizations are making their patients aware that some of their protected health information (PHI) has been stolen by unauthorized individuals in recent times. PHI Stolen from Staff Member of Christus Spohn Hospitals The […]
European Union Privacy investigations are probing after Google, Facebook Inc. and its apps WhatsApp and Instagram following 19 cross-border complaints submitted to regulators since GDPR legislation became enforceable on May 25. Andrea Jelinek, the EU […]
Businesses have discovered, since the General Data Protection Regulation went live in the European Union last month, that this legislation pertain to the personal data of all EU residents not just those living in EU […]
The small distinction between HIPAA medical records retention and HIPAA record retention can lead to some confusion when discussing HIPAA retention requirements. This article seeks to explain what records need to be retained under HIPAA, […]
Regardless of the fact that there was a two-year grace window for companies to prepare for GDPR compliance a recent survey study titled “GDPR Readiness Survey” shows that very few are 100% compliant with the […]
HealthEquity Inc. has been hit by a phishing attack leading to the exposure of members’ protected health information. The data breach was restricted to one email account, although a review of the messages in the […]
Optical Center, a French company that specializes in selling eye and hearing aids, has been hit with a €250,000 fine for a data breach that occurred before the introduction of the General Data Protection Regulation […]
Since the General Data Protection Regulation (GDPR) became live on May 25 this year in the European Union (EU), those involved in marketing, online and otherwise, have had to make some serious changes to the […]
A staff member at Phoenix-based Terros Health was tricked by a phishing scam and mistakenly handed over login credentials to the hacker. That person accessed the employee’s email account and may have viewed or obtained […]
The results of a recent survey conducted by Black Book Research show that 90% of hospitals and 94% of physicians have implemented mobile technology and believe that it is helping to enhance patient safety and […]
Dido Harding, the former CEO of TalkTalk, has warned to companies to replace all legacy technology systems before in order to avoid being hit with massive fines Harding, present to discuss the fallout from TalkTalk’s […]
The General Data Protection Regulations (GDPR) became enforceable at the end of last month in all European Union Member States. Many areas of confusion surround this complex legislation, chief among those is the area of […]
3,700 plan members of Rise Wisconsin are being warned that some of their protected health information may have been obtained by unauthorized people during a recent ransomware attack. It is estimated that the ransomware was […]
A nurse practitioner who breached the privacy of patients by sharing their contact information with her new employer has been suspended for 12 months by the New York State Education Department. In April 2015, Martha […]
Towards the end of last week social media giant Facebook revealed it experienced a data privacy breach last week that placed 14 million users of the platform in danger. From May 18 and 27, a […]
Now that the General Data Protection Regulation (GDPR) is in effect in European Union (EU) countries, businesses are asking whether they need to appoint a Data Protection Officer (DPO). The job of a Data Protection […]
Following a data breach that impacted the privacy of 500 million people globally in 2014, Yahoo – and the comany’s new owners Oath, have escaped with a warning from Ireland’s Data Protection Commission. As the General […]
Aetna have launched fresh attempts to recover some of the expenses they incurred in the ongoing legal battles in relation to a 2017 privacy breach involving the exposure of patients’ sensitive health information. A new […]
HIPAA (The Health Insurance Portability and Accountability Act) is an vital legislative Act that impacts the U.S. healthcare secor, but what is the purpose of HIPAA? Healthcare workers often complain about the limitations imposed by […]
An official advisory over weaknesses impacting certain Phillips IntelliVue Patient and Avalon Fetal monitors has been released by the Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (ICS-CERT). Three weaknesses have been […]
The General Data Protection Regulations (GDPR) became enforceable on May 25 and there is still a lot of confusion surrounding this legislation. If you are not living in a European Union (EU) country, you may […]
It has been revealed, by the Information Commissioner’s Office (ICO) that the new data European Union protection law will be applied proportionately in Northern Ireland. Despite facing fines of up to 20m euros (£17.5m) for […]
A new application programming interface (API) for developers that will allow them to develop health apps that include patients’ EHR data has been launched by Apple. Users who share their EHR data into the Apple […]
A former member of staff from Mosaic Life Care Medical Center in St. Joseph, MO has filed legal action over wrongful dismissal and retaliation for her taking measures to avoid a breach of the False […]
It has been revealed that in excess of 1,300 concerns or complaints have been submitted to the Irish Data Protection Commission (DPC) since the General Data Protection (GDPR) became enforceable on May 25. In a […]
In Colorado bill HB 1128 has been signed into law by Governor John Hickenlooper. This bill enhances security for consumer data in the state of Colorado. The bipartisan bill, sponsored by Reps. Cole Wist (R) […]
Startup software vendor Egnyte is launching a one-click compliance solution for the GDPR. This tool aims to reduce the amount of time that companies need to spend on GDPR compliance. Using machine learning features, this […]
The General Data Protection Regulation came into effect this week in all European Union m Member States countries. The focus of this new legislation is to protect the right of all European Union citizens. While […]
The introduction of the General Data Protection Regulation has been blamed for a 9% drop in the revenues of the Johnston Press Media Group. Johnston Press operates approximately 200 newspapers and websites across the United […]
The Healthcare Insurance Portability and Accountability Act states that that an individual(s) within a Covered Entity or Business Associate must be assigned the duties of HIPAA Compliance Officer. The individual filling this role can be […]
A number of different data breaches and violations of HIPAA Rules have been discovered by Dignity Health in the past few weeks. One incident involved a staff member accessing the PHI of patients without official […]
Copyright © 2020 Compliance Junction
