Non-U.S.

Fine against hospital due to data protection deficits in patient management

From the European Data Protection Board: The Commissioner for Data Protection and the Freedom of Information Rhineland-Palatinate imposed a fine of 105,000 euros on a hospital in Rhineland-Palatinate. The fine is based on several breaches of the General Data Protection Regulation in the framework of a patient mix-up when admitting the patient. This resulted...

UK: ICO enforcement action for insider snooping breach

From the Information Commissioner’s Office, this announcement: A former Social Services Support Officer at Dorset County Council has been prosecuted for accessing Social Care records without authorisation. An internal investigation found that Ms Shipsey had inappropriately accessed the Social Care records without any business need to do so. The records related to four individuals...

AU: Fears over patient data breach after cyberattack on Monash IVF

Melissa Cunningham reports: One of Australia’s largest IVF providers has warned patients that it could not rule out the possibility their personal information may have been breached following a widespread cyberattack on staff emails last month. Monash IVF Group, which is attached to clinics in six Australian states and territories, said scammers accessed emails,...