FTC: Medical Lab Failed to Protect Privacy of 10K Patients

The Federal Trade Commission has filed a complaint alleging Atlanta-based medical testing laboratory LabMD exposed roughly 10,000 consumers' personal information.

According to the complaint, a spreadsheet containing billing information for the LabMD consumers was accessible through a peer-to-peer file-sharing network. The spreadsheet included names, Social Security numbers, dates of birth, insurance provider information and standardized medical treatment codes, according to the FTC.

Additionally, in 2012, the complaint alleges police in Sacramento, Calif., discovered LabMD documents containing at least 500 people's personal information in the possession of identity thieves. The documents contained names, Social Security numbers and bank account information, according to the FTC.

The FTC has proposed requiring LabMD to implement a comprehensive information security program, which an independent, certified security professional would evaluate every two years for the next 20 years. Under the proposed order, the lab would also have to notify consumers who were exposed to possible identity theft.

More Articles on Patient Privacy:
Advocate Faces HHS Investigation Over Data Breach
Study: 6% of Physicians Tweeted Potential Patient Privacy Violations
Florida Officials Express Concern About PPACA Navigators

Copyright © 2024 Becker's Healthcare. All Rights Reserved. Privacy Policy. Cookie Policy. Linking and Reprinting Policy.

 

Featured Whitepapers

Featured Webinars