Another Data Breach of Patient Records

Posted on November 12, 2009 by Melissa Ostrower

The Baltimore Sun reports that Baltimore police are investigating a security breach at Mercy Medical Center that left certain patient records open to possible identity theft. According to the article, affected former patients were sent a letter informing them that their personal patient records may have been accessed by a former employee in order to apply for credit cards and loans. A Maryland state law that became effective in 2008 would require Mercy Medical Center to notify these individuals promptly in the event of such a breach. 

This case is yet another example of personal information being accessed for improper purposes by hospital staff and demonstrates the need for hospitals to establish strict privacy controls and notification procedures.

Tags: , , , ,
Trackbacks (0) Links to blogs that reference this article Trackback URL
http://www.workplaceprivacyreport.com/admin/trackback/166321
Comments (1) Read through and enter the discussion with the form at the end
John Franks - November 13, 2009 7:37 AM

In the realm of risk, unmanaged possibilities become probabilities: Most breaches are due to a lagging business culture. As CIO, I'm always looking for ways to help my teams. Required reading is "I.T. WARS: Managing the Business-Technology Weave in the New Millennium." I like to pass along things that work, hoping good ideas make their way to me.

Post A Comment / Question Use this form to add a comment to this entry.







Remember personal info?
Send To A Friend Use this form to send this entry to a friend via email.