[ Tuesday, November 10, 2009 ]
Anthem BCBS (Connecticut) Data Breach:
I noted below
that Anthem Blue Cross Blue Shield had a laptop stolen that had data on about 18,000 doctors, including some social security numbers (not PHI, though, so it's [probably] not a HIPAA violation). The information was unencrypted, which was against company policy. Well, the Connecticut AG is on the case
, alleging Anthem of acting too slowly in notifying the victims and not providing enough credit protection to the doctors.
This will be interesting to watch, since it might be a little taste of what we'll be in for when state AGs get to enforce HIPAA.
Jeff [10:31 AM]
Blogger: HIPAA Blog - Edit your Template