A California appellate court recently dismissed a class-action lawsuit against the University of California over a data breach that exposed the personal information of more than 16,000 patients of the UCLA Health System, according to an article on the California Healthline website.
The October 15 ruling states that health care providers are not necessarily liable when medical data are stolen or misappropriated unless the information is accessed by a third party.
In September 2011, an external hard drive containing personal information of 16,288 UCLA patients was stolen from the home of a doctor working with the UCLA Faculty Group. The records dated from July 2007 through July 2011.
The patient information on the lost hard drive was encrypted, but a piece of paper that had the password to decode the data also went missing, according to the article.There was no proof that the data had been accessed by a third party
In a statement quoted in the article, the California Hospital Association called the ruling "good news for hospitals and other health care providers who are victims of theft or hacking of medical information where the plaintiff cannot prove that the thief or hacker actually viewed the medical information"
Read the article.
17 Million Patient Records Stolen in PIH Health Ransomware Attack
Holidays are Prime Times for Healthcare Cyberattacks
Hartford Healthcare Forms Partnership to Open Health Equity Clinic
UCHealth Reveals Plans for Memorial Hospital North Expansion
What Are 'Hospi-tels'?