Vendor (supply chain)

Boston Medical Center transcription service notifies 15,000 patients

April 28th, 2014

 

Boston Medical Center (BMC) suffered data breach due to transcription’s service vendor’s website. Around 15,000 patients have been affected by this incident. BMS has fired the vendor and notified the patients regarding the breach. According to reports, records didn’t include Social Security numbers or financial data but patient names, addresses, and medical information, including what drugs they were taking, were potentially compromised as a result of the website posting.

“We have no evidence that any unauthorized individuals actually looked at the records,” Jenni Watson, the hospital’s chief of staff said, “But we wanted to notify the patients involved.” The incident may have occurred due to vendor’s website lacking password protection for the patient records. BMC, which had worked with MDF for about 10 years, is unsure of the extent and duration of the breach.

“We take our responsibility to maintain our patients’ privacy very seriously and have notified all individuals who were affected by this vendor error. As a result of this incident, we have terminated our relationship with MDF.” BMC said.

Jani said, “The hospital had no reason to believe the information was viewed by outsiders or misused.”

It is interesting to see the agreement between BMC and vendor whether they have included terms of contract for breach, considering BMC has notified the patients from their end.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta