The Utah Consumer Privacy Act (UCPA) is legislation unanimously passed in the Utah Legislature. The final version of this Utah privacy law now awaits the signature of Governor Spencer Cox. If, as expected, the Governor signs the legislation by March 24, 2022, Utah will become the fourth state in the nation with a comprehensive consumer privacy law. The details of the Utah Consumer Privacy Act are [...]
The final chapter of the Excellus Health Plan 2015 data breach that affected more than 9.3 million patients nationwide may be in sight. A settlement has been reached between the plaintiffs’ attorneys and the company in the Excellus HIPAA class action lawsuit, pending judicial review. Basis of Excellus HIPAA Class Action Lawsuit Attorneys announced the settlement on January 24, 2022, with Excellus, [...]
In January of 2022, EyeMed Vision Care LLC, a New York vision benefits provider, settled an action brought by the New York State Attorney General against it for failing to implement adequate data security measures, including multifactor authentication, password management, and logging of email accounts. These deficiencies resulted in a 2020 email data breach during which hackers accessed an EyeCare email account [...]
Electronic Health Record (EHR) services provider QRS Inc. is facing a data breach lawsuit following an August cyberattack that may have compromised the privacy of 319,778 patients. Background of QRS Data Breach Lawsuit In a statement on their website, QRS confirmed their discovery on August 26, 2021, that a threat actor had accessed a server and may have obtained electronic protected health [...]
Quest Diagnostics subsidiary, ReproSource Fertility Diagnostics has been sued by a patient over alleged security deficiencies. The Quest data breach lawsuit was filed one month after the October 8, 2021 announcement of a ransomware attack that potentially exposed the protected health information (PHI) of 350,000 individuals. Details of the Quest Data Breach Lawsuit According to the notification provided by ReproSource, the company’s [...]
In November of 2021, the New Jersey State Attorney General’s (AG) Office, Division of Consumer Affairs, settled 2 HIPAA claims, one HIPAA claim against Command Marketing Innovations (CMI), and another HIPAA claim against CMI’s business associate, Strategic Content Imaging, LLC (SCI). This $130,000 resolution settled each company’s potential HIPAA Security Rule and Privacy Rule violations. The printing companies were drummed into New Jersey court for having [...]
The deadline for Illinois Medical Marijuana dispensaries to become HIPAA compliant was December 1, 2021. As of this date, Illinois medical marijuana HIPAA compliance is required for all dispensaries in the state that provide marijuana products to patients. This includes completion of a security risk assessment and encryption of electronic devices and networks that contain the protected health information (PHI) of patients. [...]
Planned Parenthood Los Angeles faces a class-action lawsuit in the wake of an October cyberattack that potentially exposed the protected health information (PHI) of 409,759 patients. The Planned Parenthood class-action lawsuit is discussed in detail below Planned Parenthood Class-Action Lawsuit – Details of Lawsuit Filed on December 9, 2021, by an unnamed patient, the lawsuit alleges that the patient and class members [...]
Two printing companies settled with New Jersey over an incident that exposed protected medical and client information. Under the state HIPAA settlement, Command Marketing Innovations, LLC (CMI) and Strategic Content Imaging, LLC (SCI) agreed to pay a $130,000 fine and implement more robust security policies. Why Were They Fined? The incident that led up to the state HIPAA settlement occurred when the [...]
In July 2021, UC San Diego Health notified the public that it had been the victim of a four-month long phishing attack that gave hackers access to the protected health information of 495,949 patients. As a result, a health data breach lawsuit was filed alleging a violation of California Consumer Privacy Act, negligence, and breach of contract. The lawsuit seeks class-action status. [...]
© 2023 Compliancy Group LLC. All Rights Reserved | Terms of Use | Privacy Policy
