Cancer Clinic Employee Charged with Theft of Patient Data

  • 9 August 2014
  • 7 replies
  • 4 views

Userlevel 7

Cancer Clinic Employee Charged with Theft of Patient Data

 
By Jeff Goldman  |  Posted August 08, 2014
 
http://www.esecurityplanet.com/imagesvr_ce/3182/abstract-binary-feature-250x165.jpgVirginia's Riverside Health System has acknowledged that a former employee of the Riverside-owned Cancer Specialists of Tidewater has been charged with improperly accessing patients' credit card information and Social Security numbers (h/t PHIprivacy.net).
T'sha Riddick, 33, worked for almost two years at one of the company's clinics, according to the Virginian-Pilot -- all patients who visited the practice in the time since Riddick's hiring in June 2012, a total of more than 2,000 people, are potentially affected.
Riverside spokesman Peter Glagola told the newspaper that Riddick, who had a previous felony conviction for credit card fraud, had never been given a background check.
  
"Keeping patient information protected is vital at Riverside," Glagola said in a statement. "We are looking at ways to improve our monitoring program with more automatic flags to protect our patients."
 
eSecurityPlanet/ Full Article Here/ http://www.esecurityplanet.com/network-security/cancer-clinic-employee-charged-with-patient-data-theft.html
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

7 replies

Userlevel 5
"who had a previous felony conviction for credit card fraud, had never been given a background check."

that negligence opens up the clinic to a TON of liability
Userlevel 7
Thanks for posting Anthony. I read about this in the Virginia Pilot Newspaper. When I read cancer clinic employee charged with theft of patient data in the Tidewater area, that got my attention. I thought oh no. Then I read on and it was Riverside Health System. I go to the Virginia Onocology Associates of Virginia (VOA) in the Tidewater area. In May I noticed that the VOA was still using Windows XP. I asked the Doctor about that and he stated that they are going to upgrade soon. I'll fine out in November when I see him again.
Userlevel 6
A hospital near me in South Florida not long ago had a data breach of patient information. It was not an employee
 
There has to be some control over what information employees are able to retrieve to begin with. How a hospital can hire anyone without first doing a complete background check is unacceptable, Stealing personal information from  cancer patients of all people!
 
 
Userlevel 5
"How a hospital can hire anyone without first doing a complete background check is unacceptable, "

imo how anyone can hire someone for anything over than a menial position (fast food etc) w/o a background check is ridiculous.
Userlevel 6
@ wrote:
"How a hospital can hire anyone without first doing a complete background check is unacceptable, "

imo how anyone can hire someone for anything over than a menial position (fast food etc) w/o a background check is ridiculous.
I wouldnt hire anyone for fast food restuarants either or any type of position anywhere without a background check,
 
I agree with you, commented only in reference to hopitals as to keep on topic. It is inexuseable and irresponsible on the employers part not to do a backgroud check.
Userlevel 7
I just can't imagine not performing a background check. I do it for all of my technicians, and they do not handle near as much personal information or have access to medical processes / prescription abuse as a medical employee has.

This is inexcusable!
Userlevel 5
@BB613 wrote:
@ wrote:
"How a hospital can hire anyone without first doing a complete background check is unacceptable, "

imo how anyone can hire someone for anything over than a menial position (fast food etc) w/o a background check is ridiculous.
I wouldnt hire anyone for fast food restuarants either or any type of position anywhere without a background check,
 
I agree with you, commented only in reference to hopitals as to keep on topic. It is inexuseable and irresponsible on the employers part not to do a backgroud check.
When I said a background check I ment one beyond the absolutely basic criminal record check (which should be required for any postion), and the only reason I excluded menail positions is because of the high turnover rate, cost of performing a real background check,and limited access of PII or other sensitive information that kind of position would have.

Reply