Nevada Consumer Privacy Law Allows for Opt-Out of Sale of Covered Information
In May of 2019, the Governor of Nevada approved Senate Bill 220 (SB 220), an updated Nevada consumer privacy law. This legislation, which becomes effective on [...]
HIPAA Security Rule Technical Safeguards and Employee Logins
Under the HIPAA Security Rule, covered entities must implement security safeguards to protect the confidentiality, integrity, and availability of electronic protected health information (ePHI). ePHI is any protected health [...]
The Integrity of ePHI Under HIPAA Security Rule
The HIPAA Security Rule requires that covered entities (health plans, healthcare clearinghouses, and healthcare providers who electronically transmit any health information in connection with a HIPAA-related [...]
Employee of DBHIDS Loses Unencrypted Laptop Resulting in HIPAA Breach
An employee of Philadelphia’s Department of Behavioral Health and Intellectual disAbility Services (DBHIDS) lost an unencrypted laptop on public transportation. The laptop contained the protected health information (PHI) of [...]
Healthcare Organizations and HIPAA Cybersecurity
Implementing effective HIPAA cybersecurity measures is essential to safeguarding protected health information (PHI). However, according to a recent study conducted by Brigham Women's Hospital and Harvard Medical School, many [...]
Double Trouble: Indiana Engineering Company Hit with Federal AND Multistate Data Breach Fines
Medical Informatics Engineering, Inc. (MIE) is an Indiana-based company that develops and offers solutions enabling the exchange of electronic protected health information (ePHI). In May of [...]
HIPAA Privacy and Security Do Not Cover Health Apps Compliance
With the fast adaptation of technology in healthcare, such as wearable technology and genetic testing kits, protecting private health information has become increasingly important. Currently the HIPAA Privacy and [...]
Ransomware Attack on California Health and Wellness Center Leaves Up to 21,500 Exposed
California-based Shingle Springs Health and Wellness Center provides medical, behavioral, dental, and pharmaceutical services. On April 7, 2019, the center discovered that its server had become [...]
Email Phishing Scheme Results in Exposure of 15,000 Patients’ PHI
The personal health information (PHI) of up to 15,000 patients who received medical care through Los Angeles County’s hospitals and clinics was exposed in a March, 2019 phishing scheme. [...]
Unsecured Marketing Database Leaves 5 Million Exposed in Massive Breach
On May 13, 2019, security researcher Bob Diachenko discovered the database for MedicareSupplement.com on the internet, and informed the company of the data breach. Although he never received a [...]
