PrivacySignal
Healthcare

Community Health Center of Buffalo & Greenbaum Rowe Smith & Davis Confirm Data Breaches

HIPAA Journal · · US Federal · Healthcare Privacy

Community Health Center of Buffalo and New Jersey law firm Greenbaum Rowe Smith & Davis have each disclosed separate data breaches. The incidents, reported via The HIPAA Journal, involve organizations that handle sensitive medical and legal information respectively.

Why this matters: A health center and a law firm getting breached in the same news cycle is not a coincidence worth shrugging at. These are two of the most sensitive data environments there are. Health centers hold diagnoses, medications, and financial records tied to people's bodies. Law firms hold disputes, strategies, and privileged communications people never expected to be exposed. When both types of organizations are breached, real people face real consequences — discrimination, fraud, or private details surfacing at the worst possible time. The organizations collected the data. The obligation to protect it came with that.

Who should care: Healthcare professionals · Privacy officers · Compliance

This summary is AI-assisted and may contain errors. It is an original briefing to help you gauge significance quickly — not a reproduction of the source. Always read the linked original before relying on it. See our methodology.

Related stories

Healthcare
HIPAA Journal · · US Federal

Why Medical Device Compliance Is Growing More Important Every Year

A piece from The HIPAA Journal examines the growing compliance burden on the medical device industry, pointing to the sector's expanding presence in everyday healthcare settings and the regulatory expectations that follow.

Who should care: Healthcare professionals · Privacy officers · Compliance · Lawyers

#healthcare#regulation Read original →
Healthcare
HIPAA Journal · · US Federal

Study of Healthcare Websites Shows Widespread and Risky Use of Tracking and Analytics Tools

A new study found that most healthcare websites deploy third-party marketing and analytics tools that could expose sensitive patient information to outside companies. The findings point to a systemic gap between what healthcare sites collect and what patients reasonably expect about who sees their data.

Who should care: Healthcare professionals · Privacy officers · Compliance · Cybersecurity

#healthcare#surveillance Read original →
Healthcare
HIPAA Journal · · US Federal

ERMI; McLeod Physician Associates; Centers for Dialysis Care Announce Data Breaches

Three healthcare organizations — ERMI, a Georgia medical equipment company; McLeod Physician Associates in South Carolina; and Centers for Dialysis Care — have each announced separate data breaches. All three operate in sectors that handle sensitive patient health information covered under HIPAA.

Who should care: Healthcare professionals · Privacy officers · Compliance

#healthcare Read original →
Healthcare
HIPAA Journal · · US Federal

HIPAA Security Rule Update Postponed: More Time Given to Implement Major HIPAA Security Rule Changes

Federal regulators have extended the timeline for HIPAA-regulated entities to comply with proposed updates to the HIPAA Security Rule, giving covered organizations additional time to prepare for the changes. The postponement applies broadly to entities subject to HIPAA, including healthcare providers, insurers, and their business associates.

Who should care: Healthcare professionals · Privacy officers · Compliance · Lawyers

#healthcare#regulation Read original →
Healthcare
HIPAA Journal · · US Federal

Small Practice Owners Guide to HIPAA Compliance Programs

A guide from The HIPAA Journal addresses how small medical practice owners bear direct legal responsibility for HIPAA compliance, even when routine compliance tasks are delegated to staff or third parties. The piece outlines how that personal accountability shapes what a functioning compliance program needs to look like.

Who should care: Healthcare professionals · Privacy officers · Compliance · Lawyers

#healthcare#regulation Read original →