We started this project as a result of information we obtained including
through breach notification from some of the licensees.
Not exact matches
10.1
through 10.3, the provisions outlining the obligations for
breach reporting and
notification, still are not in force pending the creation of necessary regulations.
The distinction currently drawn by data
breach notification laws between active and passive
breaches should be abandoned, because it provides an incentive for malicious actors to obtain personal data
through social engineering, rather than
through hacking.
This is a call to amend our current data
breach notification laws to encompass personal data obtained
through social engineering as a recognized form of data
breach.
Trained all medical staff in the use of the hospital's electronic health record system, as well as HIPAA
Breach Notification,
through individual training sessions and group workshops / seminars.