California Healthline: Privacy

Mobile Technology Poses Security Risks to Health Data, According to DHS

Mon, 21 May 2012 08:00:00 GMT

A report from the Department of Homeland Security finds that the health care industry's adoption of mobile technology poses certain security risks to patient data. The report offers recommendations to boost health care organizations' data security. Government Computer News et al.

Personal IHSS Data Missing From Mailed Shipment, Officials Say

Mon, 14 May 2012 08:00:00 GMT

State officials say that personal data on In-Home Supportive Services workers and care recipients might have been compromised when microfiche containing Social Security numbers went missing from a shipment sent by mail. Los Angeles Times, AP/San Jose Mercury News.

Stockton Lab Break-In Could Affect Hundreds of Patients

Fri, 27 Apr 2012 08:00:00 GMT

A Stockton laboratory affiliated with St. Joseph's Medical Center had records containing data on at least 700 patients stolen during a break-in that was discovered on Feb. 2, according to hospital officials. The data included Social Security numbers and health insurance information. St. Joseph notified the police and government agencies. Officials also contacted potentially affected patients by mail, offering them no-cost enrollment in a credit-monitoring system. Stockton Record.

Editorial Calls for Increased Hospital Data Transparency

Tue, 24 Apr 2012 08:00:00 GMT

A Sacramento Bee editorial argues that "improving state hospitals should not entail limiting the amount of legitimate information provided to the public." The editorial adds that although the state must comply with federal patient privacy laws, it should "not hide behind privacy laws, obfuscate and otherwise effuse to release fundamental information." Sacramento Bee.

Lawsuit Filed Over Health System's Exposure of Data

Wed, 11 Apr 2012 08:00:00 GMT

A class-action lawsuit has been filed against St. Joseph Health System for allegedly allowing data on 31,800 California patients to be searchable online. St. Joseph Health operates several hospitals in California. According to a St. Joseph Health spokesperson, the suit is one of five filed against the health system for accidental release of information. North Bay Business Journal.

DMHC Confirms 2011 Breach of Confidential Medical Information

Fri, 09 Mar 2012 08:00:00 GMT

A Department of Managed Health Care official said that in October 2011 the agency posted confidential information online, including physician names and medical conditions, about seven Medicare Advantage beneficiaries and one health insurance agent. Payers & Providers.

11 Class-Action Suits Combined as Single Case Over Sutter Data Breach

Fri, 02 Mar 2012 08:00:00 GMT

Sacramento County Superior Court will review a class-action lawsuit comprised of 11 individual lawsuits filed in response to a recent data breach at Sutter Health. The cases are being consolidated to maximize resources and avoid duplication. Sacramento Business Journal.

St. Joseph's Data Breach Could Affect 31K Patients Statewide

Fri, 17 Feb 2012 08:00:00 GMT

This week, St. Joseph Health System announced that a recent data breach affecting 21,300 patients at two Orange County hospitals also might have exposed the health records of more than 10,000 patients from four hospitals in Napa, Petaluma and Santa Rosa. Officials said the compromised data did not include Social Security numbers, addresses or financial data. North Bay Business Journal.

Health System Announces Data Breach at O.C. Hospitals

Thu, 16 Feb 2012 08:00:00 GMT

On Wednesday, St. Joseph Health System announced that the health records of 21,300 patients might have been accessible through Internet search engines because of faulty security settings on internal computers at Orange County's Mission Hospital and St. Jude Medical Center. Officials said the compromised data did not include Social Security numbers, addresses or financial information. Orange County Register.

Center for Democracy & Technology's McGraw Discusses Health Data Privacy Challenges

Wed, 01 Feb 2012 08:00:00 GMT

Deven McGraw, director of the Health Privacy Project at the Center for Democracy and Technology, spoke with California Healthline about the challenges of protecting health data privacy.

Columnist Blasts Hospital's Handling of Patient's Records

Thu, 05 Jan 2012 08:00:00 GMT

Los Angeles Times columnist Michael Hiltzik describes a recent situation in which executives from Shasta Regional Medical Center, which is owned by Prime Healthcare Services, showed a patient's medical chart to the Redding Record Searchlight, arguing that the incident violates patient privacy rules because the hospital executives did not obtain the patient's written authorization. "The behavior of Prime and Shasta Regional should provide rich fodder for investigations by state and federal agencies and by U.S. prosecutors in Sacramento, who cover Shasta County," Hiltzik writes. Los Angeles Times.

Class-Action Lawsuit Filed Over UCLA Health System Data Breach

Thu, 22 Dec 2011 08:00:00 GMT

Attorneys have filed a class-action lawsuit against the UCLA Health System over a security breach in September that exposed data on 16,288 patients. The suit is seeking as much as $16 million in damages. Modern Healthcare.

Thousands of Rx Drug Files Missing at Vallejo Pharmacy

Mon, 12 Dec 2011 08:00:00 GMT

Last week, Vallejo Rite Aid officials announced that prescription drug files on about 3,000 customers have been missing since August. At the end of August, employees at the newly renovated Rite Aid on Solano Avenue realized that several boxes containing prescription records were missing. Spokesperson Ashley Flower said that the company has electronic copies of the files and that the missing files do not contain any credit card or Social Security numbers. Rite Aid retained a risk consulting firm to notify affected customers. Vallejo Times-Herald.

Contra Costa County Informs Patients of Privacy Breach

Mon, 05 Dec 2011 08:00:00 GMT

On Friday, Contra Costa County officials mailed letters to county hospital patients whose names unintentionally appeared online in a public document. Officials said the incident involves patients who were relieved of medical debt last year by county supervisors. An agenda item posted online contained more than 5,000 patient names and financial records, but no medical information. County Administrator David Twa said that the names have been redacted and that the state Department of Public Health was notified. Twa added that the county started an internal investigation last week. Contra Costa Times.

Second Lawsuit Filed Over Sutter Health Data Breach

Wed, 30 Nov 2011 08:00:00 GMT

On Nov. 21, the law firm Dreyer Babich Buccola Wood filed a class-action lawsuit against Sutter Health in a response to a stolen computer containing personal information on more than four million patients. On Nov. 16, the law firm Harris & Rubel filed a similar lawsuit on behalf of a patient against Sutter Medical Foundation and Sutter Physician Services. Both lawsuits allege that Sutter did not have adequate safeguards in place and failed to notify affected patients within 30 days of the incident. eWeek, Becker's Hospital Review.

Patients File Lawsuit Against Sutter Health in Stolen Data Incident

Wed, 23 Nov 2011 08:00:00 GMT

Sutter Health patients have filed a lawsuit against the health system following the theft of a computer that contained personal data of more than four million patients. The lawsuit argues that Sutter was negligent in securing data and in notifying affected patients. Sacramento Bee, KCRA.

Sutter Health Reports Stolen Computer With Data on 4.2M Patients

Thu, 17 Nov 2011 08:00:00 GMT

Sutter Health has announced that a computer containing personal data on 4.2 million patients was stolen from its medical office in Sacramento last month. Officials said that the computer was password-protected but that data were not encrypted. Sacramento Business Journal et al.

HHS Restores Public Access to Physician Discipline Database

Fri, 11 Nov 2011 08:00:00 GMT

On Wednesday, HHS' Health Resources and Services Administration restored access to the public section of the National Practitioner Data Bank, which tracks physician disciplinary actions and malpractice claims. HHS blocked access to the public section earlier this year after a physician expressed confidentiality concerns. Upon reopening the database, HRSA officials said users must agree that they will not combine the data with publicly available records to identify physicians. Journalists and consumer advocates criticized the restriction, saying that it places restraints on press freedom. New York Times et al.

Spotlight on New PHR Model Privacy Notice

Thu, 10 Nov 2011 08:00:00 GMT

To help address consumer privacy concerns, the Office of the National Coordinator for Health Information Technology has released a Personal Health Record Model Privacy Notice that allows providers of Web-based PHRs to inform consumers about their data sharing and privacy and security policies.

UCLA Health System Notifies 16,000 Patients of Stolen Hard Drive

Mon, 07 Nov 2011 08:00:00 GMT

UCLA Health System officials have alerted about 16,000 patients that an external hard drive containing personal data was stolen from a physician's home. The hard drive's information was encrypted, but a piece of paper with the password also is missing. Los Angeles Times et al.

'Chain of Events' Led to Patient Data Breach at Stanford Hospital

Thu, 06 Oct 2011 08:00:00 GMT

New details have emerged about how the information of 20,000 patients at Stanford Hospital & Clinics ended up on a public website for nearly a year. A billing subcontractor sent a spreadsheet with patient data to a job applicant as part of a pre-employment exercise. New York Times.

Lawsuit Filed Against Stanford Following Patient Data Breach

Tue, 04 Oct 2011 08:00:00 GMT

Stanford Hospitals & Clinics says it will defend itself against a $20 million lawsuit filed by a patient on behalf of 20,000 other patients whose medical data were breached. The lawsuit claims Stanford violated a medical data privacy law. San Jose Mercury News, Palo Alto Weekly.

State, Federal Officials Encourage Physicians To Fight Health Care Fraud

Fri, 23 Sep 2011 08:00:00 GMT

State and federal health officials are urging physicians to take steps to try to prevent medical fraud and identity theft. At a meeting at UC-Riverside, officials warned that medical fraud could disrupt health care services and physician payment. Riverside Press-Enterprise.

Bill Would Let Minors Get Preventive STI Care Minus Parental Consent

Fri, 23 Sep 2011 08:00:00 GMT

A measure on the desk of Gov. Brown would allow minors in California to receive preventive treatment for sexually transmitted infections without obtaining the consent of a parent or guardian. Brown has not stated his position on the legislation. San Diego Union-Tribune.

HHS' Move To Block Access to Doctors' Records Draws Ire

Mon, 19 Sep 2011 08:00:00 GMT

Last week, several consumer advocacy and journalism groups criticized the Obama administration's removal of certain information from the National Practitioner Data Bank, which tracks physician disciplinary actions and malpractice claims. HHS blocked access to the public section of the database because of confidentiality concerns expressed by a physician. HHS spokesperson Martin Kramer said the agency is working to restore public access to the data. Reuters et al.

Breach Exposes Data on 20,000 Patients From Stanford Hospital's ED

Fri, 09 Sep 2011 08:00:00 GMT

Information on more than 20,000 patients treated at Stanford Hospital & Clinics was publicly posted to a commercial website for nearly one year, the hospital has confirmed. The exposed data include patients' names, billing charges and diagnosis codes. New York Times et al.

NIH Releases Updated Conflict-of-Interest Rules for Researchers

Wed, 24 Aug 2011 08:00:00 GMT

On Tuesday, NIH updated its conflict-of-interest rules for researchers, lowering the amount of money that constitutes a financial conflict. The new rules are designed to prevent scientists from diverting public funding for their personal profit. National Journal et al.

Medical Data of 300,000 Californians Available Via Unsecured Website

Mon, 22 Aug 2011 08:00:00 GMT

A researcher recently found that the medical data of 300,000 Californians were available online through an unsecured site. Southern California Medical-Legal Consultants said it thought the information was secure and has taken steps to protect the data. AP/Forbes.

Health Net Widens Scope of Data Breach Stemming From Lost Hard Drives

Fri, 12 Aug 2011 08:00:00 GMT

On Wednesday, the insurer Health Net said more members have been notified that their personal data might have been exposed after it lost digital records in March. The insurer also said members' Social Security numbers were compromised. Bakersfield Californian.

Medical Center Reports Worker Removed About 1,500 Patient Records

Wed, 03 Aug 2011 08:00:00 GMT

Mills-Peninsula Medical Center recently fired a mailroom employee for taking home about 1,500 patient records over the course of nearly a year. Health system officials say they do not believe the information in the files was used improperly. San Mateo Daily Journal et al.

UCLA Health System Agrees To Pay $865K Over Privacy Breaches

Fri, 08 Jul 2011 08:00:00 GMT

As part of a settlement with federal officials, UCLA Health System agreed to pay $865,500 over claims that its workers improperly viewed celebrities' electronic health records. The health system also submitted a corrective plan. Los Angeles Times et al.

Lawmakers Amend Bill To Soften Requirements on Noting EHR Changes

Tue, 28 Jun 2011 08:00:00 GMT

The amended version of SB 850 removes a provision requiring patients to be able to see any edits to information in their electronic health records. However, the amended bill still requires health care providers to make note of any changes made to EHRs. California Watch.

Obama Administration Planning Covert Survey of Primary Care Doctors

Mon, 27 Jun 2011 08:00:00 GMT

Some physicians are concerned with a federal plan to use "mystery shoppers" to learn more about access to care issues. An HHS official says the plan is designed in part to assess whether the health reform law will increase the supply of primary care physicians. New York Times.

Health Agency Announces Data Breach Affecting 9,000 People

Mon, 27 Jun 2011 08:00:00 GMT

The California Department of Public Health has reported that personal data on 9,000 current and former employees were improperly copied to a hard drive and removed from the agency's office in April. HealthLeaders Media, Orange County Register.

Supreme Court Issues Rulings on Data Mining, Generic Drug Labeling

Fri, 24 Jun 2011 08:00:00 GMT

On Thursday, the U.S. Supreme Court struck down a Vermont law limiting the use of physician data by pharmaceutical companies for drug marketing purposes. The court also ruled that generic drugmakers cannot be sued for failing to provide risk information. AP/Burlington Free Press et al.

Ruling Authorizes Lawsuits Over Certain Health Data Disclosures

Mon, 20 Jun 2011 08:00:00 GMT

The state Supreme Court ruled that Californians can sue those who disclose their medical records to a credit reporting agency. The ruling could have implications for privacy rules in other states. San Francisco Chronicle, Bay City News/San Francisco Appeal.

CHA Opposing Bill Requiring Notations of Changes to EHRs

Mon, 20 Jun 2011 08:00:00 GMT

The California Hospital Association recently sent a letter to Sen. Mark Leno expressing opposition to a bill he authored that would require health care providers to record any modifications to data in patients' electronic health records. In the letter, CHA notes that the bill would impose a significant cost burden on hospitals at a time when they already are facing federal mandates to implement health information technology. The Assembly Health and Judiciary Committee is scheduled to hold a hearing on the measure on Tuesday. NextGov's "Health IT Update."

Measure Would Require Health Care Providers To Note Changes to EHRs

Mon, 13 Jun 2011 08:00:00 GMT

A bill working its way through the California Legislature would require health care providers to record any modifications to data in patients' electronic health records. The legislation also would make it possible for patients to see changes to their EHRs. California Watch.

EHR Security Measure Might Have Hidden Consequences

Thu, 12 May 2011 08:00:00 GMT

The intent of SB 850 is relatively simple, its author Mark Leno (D-San Francisco) said yesterday at a Senate Judiciary Committee hearing.

"Specifically, the bill requires the electronic health record to log a change or deletion, and that change or deletion note needs to include the identity of whoever made the change," Leno said, adding "Without these requirements and protections, there could be real concern for the well-being of the patient."

Changes to an EHR can go unnoticed and can be harder to trace than changes made to paper records, according to Leno.

Kaiser Permanente Part of Health Data Sharing Project

Thu, 07 Apr 2011 08:00:00 GMT

Five large health care systems -- Geisinger Health System, Group Health Cooperative, Intermountain Healthcare, Kaiser Permanente and Mayo Clinic -- have launched a nationwide project to share patient data in an effort to improve patient care. The Care Connectivity Consortium also aims to ensure the privacy and security of patients' information and use national standards in the exchange of medical data. The groups expect some data sharing to begin within a year. San Francisco Business Times et al.

Adult Film Industry Clinic Investigating Possible Breach

Mon, 04 Apr 2011 08:00:00 GMT

The Adult Industry Medical Healthcare Foundation Clinic, now known as AIM Medical Associates, is investigating a possible breach of its medical record database following the posting of private patient information on a website. Jeffrey Douglas, an attorney for AIM, said clinic officials have ramped up security measures to guard the personal information of performers. Douglas did not specify whether the clinic has referred the breach allegations to law enforcement. Los Angeles Times.

Hospital Computer Stolen From Eisenhower Facility

Thu, 31 Mar 2011 08:00:00 GMT

Rancho Mirage-based Eisenhower Medical Center has announced that a computer containing personal information of 514,330 patients was stolen from Eisenhower Hospital on March 11. The computer contained patients' names, dates of birth and partial Social Security numbers but did not contain data on medical conditions or treatments. The not-for-profit medical center is sending notification letters to affected patients, and the California Department of Public Health will investigate the incident. Palm Springs Desert Sun, Modern Healthcare.

State Regulators Launch Investigations of Health Net's Security Breach

Wed, 16 Mar 2011 08:00:00 GMT

Insurance Commissioner Dave Jones said the Department of Insurance will investigate a data breach affecting about 845,000 current and former Health Net policyholders in California. The Department of Managed Health Care also is looking into the incident. Los Angeles Times et al.

Health Net Reports Data Breach Affecting 1.9M Current, Past Enrollees

Tue, 15 Mar 2011 08:00:00 GMT

Health Net reported that nine server drives containing personal and financial data on about 1.9 million current and former policyholders have gone missing from its data center in Rancho Cordova. The breach affects about 845,000 California residents. San Diego Union-Tribune et al.

San Francisco Reports Data Breach Affecting Medi-Cal Beneficiaries

Tue, 08 Feb 2011 08:00:00 GMT

A former San Francisco employee e-mailed the records of about 2,400 Medi-Cal beneficiaries to her personal computer, attorneys and union representatives. The records included names and Social Security numbers, but not sensitive medical information. San Francisco Examiner.

Health Agency Reports Data Breach Affecting 2,550 People

Thu, 16 Dec 2010 08:00:00 GMT

California's Department of Public Health recently lost a magnetic tape containing data on employees and residents of medical facilities. DPH said it has not received any reports of identity theft resulting from the breach. Los Angeles Times' "L.A. Now" et al.

Group: U.S., California Medical Schools Make Strides in Ethics Policies

Thu, 16 Dec 2010 08:00:00 GMT

A report card from the American Medical Student Association finds that medical schools across the country have improved in several key areas for ethics and conflict-of-interest policies. Five California-based medical schools received an A grade in the report card. Modern Healthcare et al.

Driver's License Numbers Among Lost Records

Thu, 16 Dec 2010 08:00:00 GMT

The California Department of Public Health has never had the kind of loss of medical records that it had yesterday, according to Kevin Reilly, Chief Deputy for Policy and Programs at CDPH.

"We've had much smaller instances where a laptop was stolen," Reilly said. "But nothing like this."

A magnetic tape was mailed to the Capitol from West Covina (near Los Angeles), but when it arrived in Sacramento, it was just an empty envelope.

Presidential Advisers Call for Universal Health IT Language

Fri, 10 Dec 2010 08:00:00 GMT

A new report from the President's Council of Advisors on Science and Technology recommends that the federal government help facilitate the adoption of universal standards to allow health care stakeholders to better share electronic health data while maintaining privacy. The council calls on the government to develop a universal language for data exchange. The Hill's "Healthwatch," Modern Healthcare.

Regulators Fine 7 Calif. Health Facilities Over Patient Data Breaches

Mon, 29 Nov 2010 08:00:00 GMT

Seven California health care facilities have received fines totaling $792,500 for failing to prevent breaches of confidential patient medical information. Penalized facilities are required to submit plans to prevent future patient data breach incidents. Los Angeles Times et al.

Obama Administration Steps Up Opposition to Prop. 19

Mon, 18 Oct 2010 08:00:00 GMT

In a letter sent last week to former Drug Enforcement Administration officials, U.S. Attorney General Eric Holder noted that the Department of Justice "strongly opposes Proposition 19," which would legalize marijuana in California. He wrote, "If passed, this legislation will greatly complicate federal drug enforcement efforts to the detriment of our citizens." Holder also indicated that the federal government might sue to overturn the ballot measure if it is passed by voters on Nov. 2, writing that DOJ "is considering all available legal and policy options." Los Angeles Times et al.

Medicare To Adopt New Billing System Intended To Reduce Fraud Cases

Thu, 30 Sep 2010 08:00:00 GMT

The Small Business Lending Act, which recently was signed into law, contains a provision to compel Medicare to do more to prevent fraud. By 2011, CMS must adopt new billing software used in the credit card industry that is designed to identify potentially fraudulent bills. Miami Herald.

Applicant Sues Anthem Blue Cross for Failing To Protect Personal Data

Mon, 20 Sep 2010 08:00:00 GMT

The lawsuit, which is seeking class-action status, claims that Anthem failed to protect applicant data during a recent security breach. Meanwhile, a Los Angeles County health center recently reported the improper sale of thousands of patient records. Los Angeles Times et al.

Lucile Packard Hospital Fined $250,000 Over Data Breach

Fri, 10 Sep 2010 08:00:00 GMT

The California Department of Public Health has levied a $250,000 fine against Lucile Packard Children's Hospital at Stanford University for not reporting a data breach involving information on 532 patients. Lucile Packard also received two fines, each of $1,500, for two separate incidents involving breaches of medical records. HealthLeaders Media.

Groups Accuse DHCS of Improperly Sharing Data on Patients With HIV

Fri, 10 Sep 2010 08:00:00 GMT

Three legal groups say the state Department of Health Care Services violated privacy laws by providing information about HIV-positive residents to a not-for-profit group. DHCS says it adhered to state and federal standards. AP/San Jose Mercury News, "California Watch Blog."

Most of State's Data Breach Claims Are Substantiated

Fri, 27 Aug 2010 08:00:00 GMT

The California Department of Public Health has received 3,766 patient data breach notifications from Jan. 1, 2009, through May 31, 2010, and has found that nearly 99% of the breaches were "substantiated medical breaches." The state's data breach reporting requirements differ from federal regulation, which allows health care providers to determine the "harm threshold" of a breach and report breaches only when they deem that the breach would significantly harm the individual involved. HealthLeaders Media.

Legislature Churns Out Bills on Adverse Events, Other Health Care Issues

Thu, 26 Aug 2010 08:00:00 GMT

California lawmakers must move bills to the governor's desk by next week. One of the bills working its way through the Legislature would require hospital officials to submit annual reports about adverse medical events and hospital-acquired infections. Los Angeles Times et al.

Obama Administration Seeks To Strengthen Medical Privacy Rules

Mon, 23 Aug 2010 08:00:00 GMT

The Obama administration is working to enhance patient privacy guidelines after criticism emerged that the proposed rules failed to adequately protect patient data. HHS officials plan to release final rules on safeguarding patient medical information this fall. New York Times.

UC-Berkeley Adjusts Student Gene-Collecting Program

Fri, 13 Aug 2010 08:00:00 GMT

In the wake of a California Public Health Department ruling on the treatment of DNA samples, UC-Berkeley officials have modified plans to gather genetic information from freshman students. The university will report test results in the aggregate, rather than providing students with individual results. DPH ruled that university officials would be making a medical diagnosis of each student's DNA test, which only licensed laboratories may do under state and federal law, while UC-Berkeley officials maintained the program was an educational exercise. Los Angeles Times et al.

Health Providers Expressing Concerns About Social Media

Tue, 10 Aug 2010 08:00:00 GMT

The growth in social media platforms has led many health care facilities in California and nationwide to set rules on how staff can work with the technology. Some hospitals already are facing challenges as they incorporate social media into their marketing plans. Los Angeles Times, Baltimore Business Journal.

Report: Accessing Physicians' Notes Might Fuel Concerns

Thu, 22 Jul 2010 08:00:00 GMT

Although patients might become more involved with their health care if they view their doctors' notes online, they also might become unnecessarily alarmed if the notes speculate about serious medical conditions or use misleading terminology, according to a preliminary report on a new research project called OpenNotes. The yearlong project -- which is receiving funding from the Robert Wood Johnson Foundation -- aims to assess the effects of providing patients with access to the notes their physicians make during consultations. Wall Street Journal et al.

Poll: California Residents in Favor of Abortion Rights

Wed, 21 Jul 2010 08:00:00 GMT

A new Field Poll shows that about 71% of California voters support abortion rights, while 24% prefer to see stricter rules on access to abortion. Overall support for abortion has not changed significantly across the last three decades. San Diego Union-Tribune et al.

HHS Seeks To Reinforce HIPAA Through Updated Privacy Protection Rules

Fri, 09 Jul 2010 08:00:00 GMT

HHS has issued a proposed rule to strengthen consumer control over personal health information under the Health Insurance Portability and Accountability Act. The changes would impose fines on billing agencies and other firms that break privacy rules. Modern Healthcare et al.

WellPoint Breach Could Have Exposed Enrollees' Medical, Financial Data

Wed, 30 Jun 2010 08:00:00 GMT

A recent security breach at WellPoint might have jeopardized individual policyholders' medical records, Social Security numbers and other data. The insurer's California subsidiary Anthem Blue Cross had the largest number of potentially affected members AP/Los Angeles Times et al.

Anthem Blue Cross Says Security Breach Might Have Affected 230,000

Thu, 24 Jun 2010 08:00:00 GMT

The insurer is sending letters to alert 230,000 members that their personal information might have been accessed by attorneys seeking information for a class-action lawsuit. Anthem is offering one year of identity protection services to affected members. Orange County Register.

FDA To Oversee Genetic Test Kits Aimed at Consumers

Tue, 15 Jun 2010 08:00:00 GMT

Last week, FDA sent letters informing five genetic testing companies that their products are considered medical devices and therefore must receive agency approval before they can be marketed to consumers. The companies targeted by the letters include 23andMe in Mountain View, Illumina in San Diego and Navigenics in Foster City. Last month, FDA sent a similar letter to San Diego-based Pathway Genomics after the firm announced plans to sell its genetic testing kits at Walgreen stores. San Jose Mercury News, AP/Ventura County Star.

Editorial Urges Strengthening of Patient Privacy Protections

Tue, 15 Jun 2010 08:00:00 GMT

"Details are murky about Tri-City Medical Center's decision to fire five employees and discipline a sixth for allegedly discussing patients on Facebook," a San Diego Union-Tribune editorial states. It continues that "medical privacy is likely to become a bigger and bigger issue" because the federal economic stimulus package included funds to encourage health care providers to adopt electronic health records. The editorial concludes, "We hope Tri-City's latest firings deter any more privacy scandals at local hospitals. Patients deserve their privacy -- and the letter and the spirit of the laws protecting them are clear." San Diego Union-Tribune.

State Regulators Fine 5 Hospitals for Patient Privacy Breaches

Fri, 11 Jun 2010 08:00:00 GMT

Yesterday, the California Department of Public Health fined five hospitals a total of $675,000 for breaches of patient medical records. Officials said the department has received reports of more than 3,700 breaches since Jan. 1, 2009. Sacramento Bee et al.

Obama Memo: Hospitals Must Allow Gays Visitation Rights

Fri, 16 Apr 2010 08:00:00 GMT

Yesterday, President Obama asked HHS Secretary Kathleen Sebelius to ensure that all hospitals receiving funding from Medicare and Medicaid honor patients' advance directives, power of attorney and health care proxies, regardless of sexual orientation. The memorandum will allow same-sex partners, as well as heterosexual couples who are not married, visitation rights in hospitals. Los Angeles Times.

John Muir Health System Notifying 5,450 Patients of Possible Data Breach

Tue, 06 Apr 2010 08:00:00 GMT

On Monday, John Muir Health began notifying 5,450 patients about a potential breach of their personal and health information after two laptop computers were stolen from a Walnut Creek office. The hospital system has notified HHS about the breach. San Francisco Business Times.

Medical Identity Theft Poses New Array of Challenges

Wed, 03 Mar 2010 08:00:00 GMT

Experts say medical identity theft is becoming more common, increasing the possibility that medical identity theft victims' medical records could be altered as a result. A health care privacy advocate warns that there such changes could cause problems the next time the victim seeks treatment. NPR's "Morning Edition."

Report: State Tracking System Failed To Count up to 70,000 HIV Cases

Wed, 24 Feb 2010 08:00:00 GMT

A new Legislative Analyst's Office report suggests that California's public health surveillance system missed tens of thousands of HIV cases. States receive federal HIV/AIDS support based on their reported population of HIV-positive residents. San Francisco Chronicle.

Calif. DHCS Mailing Mistakenly Includes Beneficiaries' SSNs

Tue, 09 Feb 2010 08:00:00 GMT

A recent mailing from the California Department of Health Care Services to nearly 50,000 adult day health care services beneficiaries mistakenly included their Social Security numbers. The state has begun alerting affected beneficiaries. San Francisco Chronicle, Sacramento Bee.

UCSF Alerting Patients to Potential Data Breach

Thu, 28 Jan 2010 08:00:00 GMT

On Wednesday, UC-San Francisco officials announced that personal information for about 4,400 patients might have been violated after a medical school employee's laptop was stolen in November. The laptop has been recovered, and UCSF officials said there is no evidence the information was accessed. San Francisco Chronicle, San Francisco Business Times.

Kaiser Alerts Northern California Members of Data Breach Last Month

Wed, 13 Jan 2010 08:00:00 GMT

Kaiser Permanente is informing more than 15,000 members in Northern California that an external computer drive containing their personal information was stolen from a Kaiser employee's car last month. The breach comes after Kaiser was fined last year under new state privacy laws. San Francisco Chronicle et al.

Data Breach at UC-San Francisco Hits 600 Patients

Wed, 16 Dec 2009 08:00:00 GMT

On Tuesday, UC-San Francisco officials announced a data breach that might have compromised personal information for 600 patients. The breach occurred in September, and an investigation was initiated in October, when patients also were notified. San Francisco Business Times.

Federal Law on Genetic Non-Discrimination Swings Into Effect

Mon, 23 Nov 2009 08:00:00 GMT

On Saturday, the Genetic Information Nondiscrimination Act took effect, barring insurers from denying coverage or basing premiums on a person's genetic makeup. The law also bars employers from discriminating against workers for genetic reasons. Los Angeles Times, New York Times.

HHS Issues Rule Aligning HITECH Privacy Language With HIPAA

Mon, 16 Nov 2009 08:00:00 GMT

Hoping to beef up its enforcement of already-existing privacy laws covering health information, the federal government published a rule that aligns HIPAA provisions with new, more stringent regulations in the federal stimulus package.

CalOptima Locates Missing CDs With Patient Information

Fri, 30 Oct 2009 08:00:00 GMT

CDs containing unencrypted information on as many as 68,000 members of CalOptima, Orange County's Medi-Cal managed care plan, turned up in Atlanta this week. The discs went missing two weeks ago, prompting CalOptima to alert state and federal authorities. Orange County Register's "Healthy Living."

CalOptima Reports Data Breach That Could Affect 68,000 Members

Tue, 27 Oct 2009 08:00:00 GMT

CalOptima -- Orange County's Medi-Cal managed care plan -- has posted an alert on its Web site about the loss of unencrypted CDs that included personally identifiable information for 68,000 members. State and federal agencies also have been notified. Computerworld, Health Data Management.

Move to Electronic Records Sparks Privacy Concerns

Mon, 19 Oct 2009 08:00:00 GMT

Firms that sell clinical information systems to health care providers also market de-identified patient data to researchers and pharmaceutical firms. The companies assert that procedures ensure that patients' sensitive data are not compromised, and new regulations require patients to be notified if breaches do occur. New York Times.

Groups To Create Medical Interpretation Certification

Thu, 15 Oct 2009 08:00:00 GMT

Language Line Services, a for-profit provider of medical interpreters, has begun working with the International Medical Interpreters Association to create a national certification program. There currently is no uniform accreditation or certification process for language interpreters in health care settings. The new group, called The National Board of Certification for Medical Interpreters, hopes to create a written examination to test translators' knowledge of medical ethics, privacy laws, medical terminology, and an oral exam to test language proficiency. HealthLeaders Media.

UC System Settles 12 Suits Over Stolen Eggs, Embryos

Fri, 11 Sep 2009 08:00:00 GMT

The University of California Board of Regents in recent weeks has settled for a total of $4.23 million 12 more lawsuits alleging that fertility experts at UC-Irvine's fertility center stole eggs or embryos. The payments ranged between $45,000 and $675,000. The Board of Regents has paid more than $24 million to settle 137 separate suits from the 1980s and 1990s in which the fertility center could not account for eggs or embryos or gave them to other women without consent of the donor. Los Angeles Times, Orange County Register.

Editorial: State Should Enact Doctor-Assisted Suicide Law

Thu, 10 Sep 2009 08:00:00 GMT

A new report from Washington state should compel California lawmakers to pass a law that would allow physician-assisted suicide, according to an editorial. The report found that such laws "don't encourage patients to kill themselves," but instead foster discussions by terminally ill patients and their families on end-of-life care. The editorial states that although polls indicate a majority of California residents support such laws, "no one in the Legislature has introduced one since 2007." San Jose Mercury News.

California Fines Kaiser Over Breach of Octuplets' Records

Fri, 17 Jul 2009 08:00:00 GMT

On Thursday, the California Department of Public Health announced a $187,500 fine against Kaiser Permanente's Bellflower hospital after an investigation found that employees improperly accessed the medical records of octuplets born at the facility in January. Kaiser was fined $250,000 for the breach of the mother's records. Sacramento Business Journal.

State Launches Investigation of Adult Entertainment Clinic

Thu, 18 Jun 2009 08:00:00 GMT

On Wednesday, California health officials performed a surprise inspection of the Adult Industry Medical Healthcare Foundation, which had been withholding the name of the production company that filmed a woman who had tested positive for HIV. The officials also plan to issue subpoenas seeking information on the 18 other HIV cases the clinic has reported to Los Angeles County since 2004. Los Angeles Times.

U.S. Rule Might Require Patients To Show Photo IDs at Physician Offices

Tue, 09 Jun 2009 08:00:00 GMT

The Federal Trade Commission's "Red Flags Rule" could require patients to show photo identification at doctor's offices starting Aug. 1. Physicians are concerned that the rule would reduce access to care for certain populations and increase paperwork. Ventura County Star.

Report Finds Health Data Protection Gaps in California

Wed, 20 May 2009 08:00:00 GMT

A new report by privacy expert Deven McGraw published online by the California Healthcare Foundation found significant gaps in the protection of patient information in California despite more stringent federal privacy protections enacted under the federal stimulus package. McGraw said the federal stimulus package provides additional opportunities to close some of those gaps and offered additional recommendations. Modern Healthcare.

California Regulators Issue First Fines Under New Medical Privacy Law

Mon, 18 May 2009 08:00:00 GMT

California officials fined a Kaiser hospital $250,000 for not doing enough to stop employees from improperly accessing the medical records of a woman who delivered octuplets at the hospital this year. The fines come under a new state law that took effect Jan. 1. Los Angeles Times et al.

Student Health Center Data Breached, UC-Berkeley Says

Mon, 11 May 2009 08:00:00 GMT

On Friday, UC-Berkeley announced that hackers -- possibly from Asia -- stole personal information on current and former students. The breach involved records dating back to 1999 at UC-Berkeley's health center that included Social Security numbers, health insurance information, immunization history and the names of treating physicians. Contra Costa Times.

Letter to the Editor Supports Rescinding 'Conscience' Rule

Fri, 08 May 2009 08:00:00 GMT

In a San Francisco Chronicle letter to the editor, Amy Autry, a professor of obstetrics, gynecology and reproductive sciences at UC-San Francisco, writes that she is "encouraged that the Obama administration is considering rescinding" the so-called "conscience" rule. She adds, "Federal rules already shield health care workers from participating in services they find objectionable." San Francisco Chronicle.

Obama Rolls Out Plan for Electronic Records Project at VA, Pentagon

Fri, 10 Apr 2009 08:00:00 GMT

President Obama said his administration will develop an electronic health record system that will let the Departments of Defense and Veterans Affairs transfer medical records seamlessly. Obama said the project could be a model for a nationwide EHR system. Washington Post et al.

Planned Parenthood To Petition End of Sex Ed Grant

Tue, 07 Apr 2009 08:00:00 GMT

On Tuesday, Planned Parenthood supporters will submit petitions to the Orange County Supervisors urging them to reverse their decision to suspend a sexual education grant to the not-for-profit because Planned Parenthood performs abortions. Orange County Register's "Healthy Living."

Kaiser Hospital Workers Fired for Viewing Suleman's Record

Tue, 31 Mar 2009 08:00:00 GMT

Fifteen employees at Kaiser Permanente Bellflower Medical Center were fired and eight were disciplined for improperly accessing the electronic health records of Nadya Suleman, who recently gave birth to octuplets. A Kaiser Permanente spokesperson said that the computer breaches were discovered about 10 days ago and that state authorities and Suleman were notified. Los Angeles Times, Orange County Register.

Employee Data Stolen From UHW Offices, Kaiser Says

Mon, 02 Mar 2009 08:00:00 GMT

Law enforcement officials have determined that the theft of personal data for 29,500 Kaiser Permanente workers in Northern California occurred at the offices of United Healthcare Workers-West in July 2007. Kaiser provided the employees' personal information to UHW as part of a "remittance of dues payments," according to a press release. Contra Costa Times, Sacramento Bee.

Poll Finds More Residents Back Restrictions on Abortions

Thu, 26 Feb 2009 08:00:00 GMT

A large majority of California residents still are in favor of abortion rights, but since January 2000, the number of residents who support placing some restrictions on abortions has increased by 8 percentage points to 27%, according to a poll by the Public Policy Institute of California. San Jose Mercury News, Los Angeles Times.

Stimulus With Less Money for Medi-Cal Moves Closer To Vote

Tue, 10 Feb 2009 08:00:00 GMT

The U.S. Senate is expected to vote on its version of an economic stimulus package today after clearing a procedural hurdle yesterday. California would get more than $1 billion less for Medi-Cal under the Senate version of the bill than it would have received under the House version. McClatchy/Arizona Daily Star.

Kaiser Permanente Notifies Employees of Data Breach

Mon, 09 Feb 2009 08:00:00 GMT

On Friday, Kaiser Permanente began notifying 29,500 Northern California employees that their confidential personal data was stolen. Some of the workers reported identity thefts resulting from the security breach, according to Kaiser. Gay Westfall, a Kaiser human resources executive, said that the security breach did not affect Kaiser members or their personal health information. Sacramento Bee, San Jose Mercury News.

Privacy Concerns Could Stall Obama's Health IT Plans

Wed, 21 Jan 2009 08:00:00 GMT

President Barack Obama's plan to expand the use of health information technology could be hindered by an ongoing dispute over how to protect the privacy of electronic health records. The health care industry and consumer groups have been unable to reach an agreement on privacy safeguards that would give patients control of the use of their health records. New York Times.

S.F. Chiropractor Sues Patient Over Negative Online Review

Thu, 08 Jan 2009 08:00:00 GMT

Steven Biegel, a San Francisco chiropractor, has sued a patient for libel and invasion of privacy over negative reviews published on Yelp, a Web site that rates businesses. If the case is not settled, a trial will begin in March in San Francisco Superior Court. San Francisco Chronicle.