Another Boston Hospital Pays Fine for Data Breach | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Another Boston Hospital Pays Fine for Data Breach

December 23, 2014
by Gabriel Perna
| Reprints
The second major Boston hospital in as many months has reached a settlement agreement with the Massachusetts Attorney General's office over a data breach. 
 
Boston Children's Hospital joins Beth Israel Deaconess Medical Center in paying a fine to Massachusetts Attorney General Martha Coakley's office for a data breach that occurred in 2012. The fine to Boston Children's was $40,000. It includes a $30,000 civil penalty and a payment of $10,000 to a fund administered by the AG’s Office for educational programs concerning the protection of personal information and protected health information (PHI).
 
The breach occurred when a Boston Children's laptop was stolen from one of the hospital's physicians, who was presenting at a conference in Buenos Aires. The laptop contained an email containing the PHI of 2,159 patients including names, dates of birth, diagnoses, procedures, and dates of surgery. More than 1,700 patients were under the age of 18. There was no encryption software on the computer to prevent the PHI from being exposed. 
 
“Healthcare providers must ensure that the privacy and security of sensitive patient information is protected,” AG Coakley said. “Today’s settlement will put in place and enforce important technological and physical security measures at Boston Children’s Hospital to help prevent a breach like this from happening again.”
 
As part of the settlement, Boston Children's will install technology to track all portable devices such as laptops, as well as encrypt and physically secure them. They'll also institute employee training programs.

 

 
Topics

News

Community Data Sharing: Eight Recommendations From San Diego

A learning guide focuses on San Diego’s experience in building a community health information exchange and the realities of embarking on a broad community collaboration to achieve better data sharing.

HealthlinkNY’s Galanis to Step Down as CEO

Christina Galanis, who has served as president and CEO of HealthlinkNY for the past 13 years, will leave her position at the end of the year.

Email-Related Cyber Attacks a Top Concern for Providers

U.S. healthcare providers overwhelmingly rank email as the top source of a potential data breach, according to new research from email and data security company Mimecast and conducted by HIMSS Analytics.

Former Health IT Head in San Diego County Charged with Defrauding Provider out of $800K

The ex-health IT director at North County Health Services, a San Diego County-based healthcare service provider, has been charged with spearheading fraudulent operations that cost the organization $800,000.

Allscripts Touts 1 Billion API Shares in 2017

Officials from Chicago-based health IT vendor Allscripts have attested that the company has reached a new milestone— one billion application programming interface (API) data exchange transactions in 2017.

Dignity Health, CHI Merging to Form New Catholic Health System

Catholic Health Initiatives (CHI), based in Englewood, Colorado, and San Francisco-based Dignity Health officially announced they are merging and have signed a definitive agreement to combine ministries and create a new, nonprofit Catholic health system.