According to the claim, some users received targeted ads via Facebook and Instagram while logged in to personal accounts. The ads were including sensitive data such as specific sexually transmitted diseases. The company has settled the case by agreeing with the FTC to a $1.5 million fine. Read more here
The EDPB issues a release on the Finnish DPA having investigated Viking Line Oy Abp’s activities after a former employee complaint that him and others had not received all their personal data being stored in the company’s systems despite their request. It emerged that Viking Line has been holding employees health data in an HR...
The US National Institute of Standards and Technology (NIST) has updated its cybersecurity guidance for the health care industry, with the purpose of helping health care organizations protect patients’ personal health information. The new report is titled Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide and focuses on issues...
In a recent audit, the US Government Accountability Office (GAO) has recommended the US Department of Health and Human Services (HHS) to establish a mechanism to improve the effectiveness of its data breach reporting process. HHS sets standards for protecting electronic health information and enforces compliance with them, where data breaches for entities under the...
The US based Shields Health Care Group (SHCG) reported a healthcare cyberattack impacting about 2 million patients who received various kinds of health services at more than 30 locations across New England. SHCG discovered suspicious activity on its network on 28 March 2022, related to access to certain of its systems from March 7 to...
The Canadian Arnprior Regional Health announced that it suffered a cyber attack compromising data dating back since 1996. The center has published the list of medical data that might have been impacted, while investigation is still ongoing. The impacted information includes names, dates of birth, contact information, health card numbers, dates of hospital visits including...
The French DPA (CNIL) fined the DEDALUS BIOLOGY company with a fine of €1.5m for security flaws that led to the leak of medical data of nearly half a million patients. Since the 24th of February 2021, the CNIL carried out several checks in the medical sector, including against the company DEDALUS BIOLOGY which markets...
American Headquarters:
PrivacyRules Ltd.
151 West 4th Street
Suite 200
Cincinnati, OH 45202, USA
European Office:
Via dei Della Robbia 112
50132, Firenze
Italy (IT)