Tag: privacy

Cooley LLP Alerts | FTC Enforcement Powers Limited in LabMD Data Security Case

Source: https://www.cooley.com/ftc-enforcement-limited-in-labmd-data-security-case

Implications of the Cybersecurity Bill for the Health Care Industry

*This post is co-authored by Vince Sampson On Tuesday the Senate passed the Cybersecurity Information Sharing Act (CISA).  The House had passed a similar bill, the Protecting Cyber Networks Act, in April of this year.  The Act comes in the wake of many large scale data breaches, such as that suffered […]

Cooley Alerts | No More Safe Harbor: What Should Life Sciences and Biotech Companies Be Doing to Transfer Data to the US?

Source: Cooley LLP | Media | Alerts | No More Safe Harbor: What Should Life Sciences and Biotech Companies Be Doing to Transfer Data to the US?

Excellus is Latest in Line of BCBS Insurers Experiencing Cyberattack

Excellus, a BlueCross BlueShield (BCBS)  provider servicing upstate New York, announced last week that it was the latest in a string of BCBS providers that experienced a data breach as a result of a cyberattack.  CareFirst BlueCross Blue Shield, Anthem, and Premera Blue Cross all recently announced they were the victims of sophisticated cyberattacks […]

“Common Rule” Overhaul Proposed – Intended to Modernize Human Research Subject Protections

On September 2, 2015, sixteen federal agencies and departments jointly issued a Notice of Proposed Rulemaking (“the NPRM”), designed to “modernize, strengthen, and make more effective” the so-called “Common Rule”.  The Common Rule is a uniform federal policy for the Protection of Human Subjects, originally issued in 1991. The U.S. agencies […]

UCLA Health Announces It Was A Victim of a Cybersecurity Attack

UCLA Health announced today that it was the victim of a cybersecurity attack.  The press report  disseminated by UCLA Health noted there is evidence that computer systems containing sensitive personal data and health data was accessed; however, at this time UCLA Health maintains that no personal or health data itself was accessed […]

Federal Advisory Group Considers Patient Data Standards

This week, the Privacy and Security Workgroup within the Health IT Policy Committee was tasked by the U.S. Department of Health and Human Services (“HHS”) to discuss certain patient data protections.  Specifically, they were asked to consider “updates or additional policies needed to address ethical privacy frameworks and research standards” […]

$4.1 Million Settlement Approved in Stanford Data Breach Action

Last week, Los Angeles County Superior Court Judge Elihu Berle tentatively approved a $4.1 million settlement of a class action claim that Stanford Hospital & Clinics violated the California Confidentiality of Medical Information Act when the medical information of about 20,000 emergency room patients was posted online for nearly a year from 2010 until […]

Breach of Patient Information at University of Washington Medical Center

Last week, the University of Washington Medical Center (“UWMC”) issued a press release explaining the details of a recent data breach and corrective action undertaken.  Specifically, in early October 2013, a UWMC employee opened an email attachment that contained malicious software (“malware”).  The malware took control of the computer in […]