Between June 18 and Nov. 4, the employee put patients’ meal tray tickets in regular garbage bins instead of a confidential shredder. Around 1,174 patients were notified that their meal tray tickets were affected.
Patient data that may have been exposed included names, birth months and days, bed/unit location at the hospital, diet information and menu received.
Since learning of the mistake, the employee and all staff have been trained on proper disposal procedures. There is no evidence that patient information has been misused.
More articles on cybersecurity:
Florida clinic to pay $85K for violating HIPAA records access rule
Wyoming hospitals hit by cyberattacks almost daily, state hospital association says
4 things to know about Zeppelin, a ransomware targeting healthcare organizations
