She had nothing to do with the care of these patients and therefore was not authorized to look at their records. Her employment with the hospital has been terminated.
"an employee who had nothing to do with the care of 39 patients accessed their health records out of curiosity about friends or neighbours."The breach was discovered after third party allegations about the inappropriate access. Rather than learn of data privacy breaches from third parties, healthcare organizations can detect them proactively with low-cost on-demand SaaS analytics services.
- Health Authority
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) Curious employee breached privacy of 39 patients, Island Health authority admits - www.TheProvidence.com, 04/15/2015