Occupational Health Partners reports breach to HHS
|
Date Reported:
6/11/10
Organization:
Occupational Health Partners LLC
Contractor/Consultant/Branch:
Undisclosed
Location:
Victims:
Patients
Number Affected:
1,105
Types of Data:
Protected Health Information ("PHI")
Breach Description:
Occupational Health Partners has notified the U.S. Department of Health & Human Services of a stolen laptop containing unprotected health information belonging to 1,105 individuals.
Reference URL:
U.S. Department of Health & Human Services ("HHS")
Report Credit:
Occupational Health Partners and HHS
Response:
From the online source cited above:
Occupational Health Partners
State:
Kansas
Approx. # of Individuals Affected:
1,105
Date of Breach:
5/12/10
[Evan] The breach occurred on 5/12, but HHS posted the breach to their website on 6/11.
Type of Breach:
Theft
Location of Breached Information:
Laptop
Commentary:
This is the first breach where I have cited the HHS breach notification web site. I struggled with including these breaches on The Breach Blog. On the one hand there are few details available for these breaches, but on the other hand I want to inform. So, consider yourself informed! ;)
A stolen laptop has led to this breach. We can assume that this stolen laptop was not encrypted because properly encrypted protected health information is exempted from notification. What is properly encrypted? Read the guidance from HHS. I have real trouble understanding why an organization would choose not to encrypt mobile devices nowadays. Pursuant to section 13402 of the Health Information Technology for Economic and Clinical Health (HITECH) Act, Occupational Health Partners should be notifying the media at some point. There may be more information available at then.
Past Breaches:
Unknown
Posts Atom 1.0
We are ActiveTrak, Inc., a Portland, Oregon company and a leader in device recovery and data protection for mobile or portable electronic devices. My company helps you remotely track a lost or stolen device; if it is a Smartphone, you can download and back-up the information and wipe it clean rendering the device useless to the thief.
We can even take the picture of the culprit if the stolen or lost device is a PC or Mac! We can then provide it to law enforcement so they are caught quickly and help prevent future instances such as what happened are your company. Our company has a recovery rate over 90%! According to Ponemon Institute the cost of a data breach in 2008 rose to $202 per customer record and will most certainly increase.
GadgetTrak (www.gadgettrak.com) enables a user to track their lost or stolen laptop computer or iPhone, Blackberry, Android and Blackberry Smartphone down to 10 meters using our geolocation technology. In the event you simply want the information on the device we will download the information and wipe it clean for you. You direct where to store the information – it is in your control. The information is also encrypted and you have the password to un-encrypt it.
We also can provide a SaaS model in which we can manage this for you we call ActiveTrak for an enterprise.. You simply manage your IT assets - if they are lost or stolen simply engage tracking and you can find it. I have attached a sell sheet for your information regarding the features of GadgetTrak.
Please contact me directly at the number and email address below to find out more.
Reply to this