PrivacySignal
Healthcare

Ohio Living; Erlanger; Heart of America Eye Care Announce Data Breaches

HIPAA Journal · · US Federal · Healthcare Privacy

Three healthcare organizations — Ohio Living, a senior living provider, Erlanger Health System in Tennessee, and Heart of America Eye Care — have each disclosed separate data breaches. All three operate in sectors covered by HIPAA, meaning the compromised data likely includes sensitive medical and personal information.

Why this matters: Healthcare breaches hit people who had no real choice about sharing their data. You do not pick your eye doctor or senior care provider based on their security practices. You share what they ask for and trust them to protect it. Three separate disclosures in one news cycle suggests this is not a rare event — it is a recurring failure across the industry. The people affected are often older adults or patients managing ongoing conditions, exactly the group that can least afford having their medical history exposed.

Who should care: Healthcare professionals · Privacy officers · Compliance

This summary is AI-assisted and may contain errors. It is an original briefing to help you gauge significance quickly — not a reproduction of the source. Always read the linked original before relying on it. See our methodology.

Related stories

Healthcare
EFF — Deeplinks · · International

Most Smart Watches, Rings, and Bands Lack Basic Transparency Reports and Key Privacy Features

A review of popular wearable devices — including Oura Ring, Apple Watch, Garmin, and Whoop — finds that most fall short on basic privacy and security standards, lacking transparency reports and strong encryption options despite collecting continuous personal health data from roughly 40 percent of Americans.

Who should care: Healthcare professionals · Privacy officers · Compliance · General readers · Policy

#healthcare#privacy Read original →
Healthcare
HIPAA Journal · · US Federal

Community Health Center of Buffalo & Greenbaum Rowe Smith & Davis Confirm Data Breaches

Community Health Center of Buffalo and New Jersey law firm Greenbaum Rowe Smith & Davis have each disclosed separate data breaches. The incidents, reported via The HIPAA Journal, involve organizations that handle sensitive medical and legal information respectively.

Who should care: Healthcare professionals · Privacy officers · Compliance

#healthcare Read original →
Healthcare
HIPAA Journal · · US Federal

Why Medical Device Compliance Is Growing More Important Every Year

A piece from The HIPAA Journal examines the growing compliance burden on the medical device industry, pointing to the sector's expanding presence in everyday healthcare settings and the regulatory expectations that follow.

Who should care: Healthcare professionals · Privacy officers · Compliance · Lawyers

#healthcare#regulation Read original →
Healthcare
HIPAA Journal · · US Federal

Study of Healthcare Websites Shows Widespread and Risky Use of Tracking and Analytics Tools

A new study found that most healthcare websites deploy third-party marketing and analytics tools that could expose sensitive patient information to outside companies. The findings point to a systemic gap between what healthcare sites collect and what patients reasonably expect about who sees their data.

Who should care: Healthcare professionals · Privacy officers · Compliance · Cybersecurity

#healthcare#surveillance Read original →
Healthcare
HIPAA Journal · · US Federal

ERMI; McLeod Physician Associates; Centers for Dialysis Care Announce Data Breaches

Three healthcare organizations — ERMI, a Georgia medical equipment company; McLeod Physician Associates in South Carolina; and Centers for Dialysis Care — have each announced separate data breaches. All three operate in sectors that handle sensitive patient health information covered under HIPAA.

Who should care: Healthcare professionals · Privacy officers · Compliance

#healthcare Read original →
Healthcare
HIPAA Journal · · US Federal

HIPAA Security Rule Update Postponed: More Time Given to Implement Major HIPAA Security Rule Changes

Federal regulators have extended the timeline for HIPAA-regulated entities to comply with proposed updates to the HIPAA Security Rule, giving covered organizations additional time to prepare for the changes. The postponement applies broadly to entities subject to HIPAA, including healthcare providers, insurers, and their business associates.

Who should care: Healthcare professionals · Privacy officers · Compliance · Lawyers

#healthcare#regulation Read original →