Given earlier assurances to the “approximately 4.9 million patients treated at military hospitals and clinics during the past 20 years” that the risk of harm was low from the SAIC PHI breach and there was no conclusive evidence that patients were at risk of identity theft, one can speculate as to whether Tricare/DoD’s abrupt about-face as to offering credit monitoring and restoration services relates to new evidence, a revised judgment as to the risk of harm to affected patients and/or simply an abundance of caution as to its own exposure to risk.
Continue Reading Did Tricare/DoD Make a “Proactive Response” or a Preemptive Strike with SAIC in the PHI Breach Matter? Whose Risk is it Anyway? – Part 4
data breach
SAIC and Its Military Millions March – Flooding the Parade with Possible PHI Breaches – Part 3
By Fox Rothschild on
When is the mere “ability” to read protected health information (“PHI”), without evidence that the PHI was actually read or was likely to have been read, enough to trigger the notice requirement under the Breach Notification Rule? Recent PHI security breaches, including that being confronted by the Department of Defense and SAIC, Inc. will provide some information and guidance.
Continue Reading SAIC and Its Military Millions March – Flooding the Parade with Possible PHI Breaches – Part 3
SAIC and Its Military Millions March – Flooding the Parade with Possible PHI Breaches – Part 2
By Elizabeth G. Litten on
Excerpt:
When is the mere “ability” to read protected health information (“PHI”), without evidence that the PHI was actually read or was likely to have been read, enough to trigger the notice requirement under the Breach Notification Rule? Recent PHI security breaches, including that being confronted by the Department of Defense and SAIC, Inc. will provide some information and guidance.
Continue Reading SAIC and Its Military Millions March – Flooding the Parade with Possible PHI Breaches – Part 2
SAIC and Its Military Millions March – Flooding the Parade with Possible PHI Breaches (With Some Words on the Nemours PHI Breach) – Part 1
By Elizabeth G. Litten on
When is the mere “ability” to read protected health information (“PHI”), without evidence that the PHI was actually read or was likely to have been read, enough to trigger the notice requirement under the Breach Notification Rule? Recent PHI security breaches, including that being confronted by the Department of Defense and SAIC, Inc. will provide some information and guidance.
Continue Reading SAIC and Its Military Millions March – Flooding the Parade with Possible PHI Breaches (With Some Words on the Nemours PHI Breach) – Part 1