I Hate Dialysis Message Board
Welcome, Guest. Please login or register.
November 24, 2024, 06:48:38 PM

Login with username, password and session length
Search:     Advanced search
532606 Posts in 33561 Topics by 12678 Members
Latest Member: astrobridge
* Home Help Search Login Register
+  I Hate Dialysis Message Board
|-+  Dialysis Discussion
| |-+  Dialysis: News Articles
| | |-+  Data breaches affect patients in 3 states
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Data breaches affect patients in 3 states  (Read 1421 times)
okarol
Administrator
Member for Life
*****
Offline Offline

Gender: Female
Posts: 100933


Photo is Jenna - after Disneyland - 1988

WWW
« on: June 22, 2010, 02:38:10 PM »

Data breaches affect patients in 3 states
Stolen laptops, dumped records and an unprotected website leave personal data exposed for more than 1.2 million people.

By Pamela Lewis Dolan, amednews staff. Posted June 22, 2010.

More than a million Florida residents lost personal information in one of several security breaches reported in recent weeks.

AvMed Health, a Florida-based health plan, said data about nearly 1.2 million members and former members were breached when two laptops were stolen in December 2009 from an AvMed office in Gainesville, Fla.

The insurer notified 360,000 customers of the breach in February. But AvMed said on June 3 that further investigation found that an additional 860,000 people had been affected.

Information included names, addresses, birth dates, Social Security numbers and health information. Although there is no evidence that the data were misused, the company contracted with an identity protection service to respond to the breach.

In another case, officials at the University of Louisville in Kentucky said on June 2 that it was notifying 708 dialysis patients of a breach. They discovered that patient names, Social Security numbers and medical information had been displayed on an unsecured website for about 19 months.

Gary Mans, spokesman for the University of Louisville, said the database was a registry for patients of the university's kidney dialysis program. The users of the site thought it was password-protected when, in fact, it was not. But even though it was technically public, there were no links to the site, and there's no evidence it was accessed by any unauthorized users, Mans said. The website was disabled when the problem was discovered.

Mans said the university is offering a year of credit monitoring to those affected.

Meanwhile, Impulse Monitoring, a Columbia, Md., company that provides onsite and Web-based monitoring of neurological systems for patients undergoing spinal and brain-related injuries, is denying any responsibility in a case involving the June 6 dumping of several boxes of data in a church parking lot in Nashville, Tenn.

The data included checks, billing statements, medical records and employee payroll information belonging to NVMS, a monitoring business that declared bankruptcy in 2008. Impulse purchased some of that company's assets in 2009, but it said those assets did not include data on former patients.

Janine Gregory, general counsel for Impulse, said some personal information for former NVMS employees now employed by Impulse might have been included in the dumped records. She had no further information about the case.

The Health Information Technology for Economic and Clinical Health Act in 2009 added a requirement under the Health Insurance Portability and Accountability Act that health care organizations must notify victims and the media of any data breaches affecting more than 500 people. In February the Dept. of Health and Human Services began posting a list of those reported breaches online (www.hhs.gov/ocr/privacy/hipaa/administrative/
breachnotificationrule/postedbreaches.html).

http://www.ama-assn.org/amednews/2010/06/21/bisd0622.htm
Logged


Admin for IHateDialysis 2008 - 2014, retired.
Jenna is our daughter, bad bladder damaged her kidneys.
Was on in-center hemodialysis 2003-2007.
7 yr transplant lost due to rejection.
She did PD Sept. 2013 - July 2017
Found a swap living donor using social media, friends, family.
New kidney in a paired donation swap July 26, 2017.
Her story ---> https://www.facebook.com/WantedKidneyDonor
Please watch her video: http://youtu.be/D9ZuVJ_s80Y
Living Donors Rock! http://www.livingdonorsonline.org -
News video: http://www.youtube.com/watch?v=J-7KvgQDWpU
Chris
Member for Life
******
Offline Offline

Gender: Male
Posts: 9219


WWW
« Reply #1 on: June 22, 2010, 04:43:25 PM »

The thing is is that this type of situation has gone on for several years with various organizations. The question they should be asking is why are we having laptops carry personal information on our clients instead of a secured server that requires security steps to gain access to. It is also te workers to blame who do keep personal information on clients on portable device which can be lost, stolen, or forgotten.
Logged

Diabetes -  age 7

Neuropathy in legs age 10

Eye impairments and blindness in one eye began in 95, major one during visit to the Indy 500 race of that year
   -glaucoma and surgery for that
     -cataract surgery twice on same eye (2000 - 2002). another one growing in good eye
     - vitrectomy in good eye post tx November 2003, totally blind for 4 months due to complications with meds and infection

Diagnosed with ESRD June 29, 1999
1st Dialysis - July 4, 1999
Last Dialysis - December 2, 2000

Kidney and Pancreas Transplant - December 3, 2000

Cataract Surgery on good eye - June 24, 2009
Knee Surgery 2010
2011/2012 in process of getting a guide dog
Guide Dog Training begins July 2, 2012 in NY
Guide Dog by end of July 2012
Next eye surgery late 2012 or 2013 if I feel like it
Home with Guide dog - July 27, 2012
Knee Surgery #2 - Oct 15, 2012
Eye Surgery - Nov 2012
Lifes Adventures -  Priceless

No two day's are the same, are they?
Pages: [1] Go Up Print 
« previous next »
 

Powered by MySQL Powered by PHP SMF 2.0.17 | SMF © 2019, Simple Machines | Terms and Policies Valid XHTML 1.0! Valid CSS!