Warning in Canada to be alive to securing data
No one, anywhere, is immune from hacking - much less pure and simple examples of slackness in ensuring that data is properly and duly secured. Hence the reason that LifeBank says that it provides an almost perfect vehicle for the user of LifeBank becoming the custodian - off the cloud - of their personal information.From portagedailygraphic.com"Company security – both cyber and physical – was the subject of discussion at Tuesday’s annual Portage la Prairie & District Chamber of Commerce and Rotary Club of Portage la Prairie joint luncheon.Representatives from Winnipeg-based project management and consultation firm InScope spoke to both chamber and rotary members on security trends that are currently plaguing businesses across the country. According to InScope managing director Azhar Laldin, an alarming amount of small businesses are not adequately secured.“I’d would suspect more than 80 per cent of the small businesses don’t think about information security,” says Laldin. “(Security) is something a lot of people don’t think about because they think, ‘I run a mid-sized company, I’m not in the layer of companies that are typically the target,’ but that’s not true. The information that hackers are looking for is all the same.”Although cyber-security has become all the rage in the age of the internet, Azhar points to basic physical security measures that many organizations are overlooking. Lack of protection of paper data is a growing trend and converging both physical and IT security is one of the biggest challenges businesses face. A useful method Laldin suggests, in terms of improving physical security, is asking if physical copies of certain documents are necessary, or will an electronic version suffice.“We’re here to educate people and share the fact that if you have someone’s personal information, you’re holding onto something that is very precious and it needs to be treated with a lot of respect and care,” he adds. “I think the first and foremost thing is making a decision on data classification. Is this information something that needs to be protected?”Invoices left about - perhaps not of the utmost importance to the business owner - could have customer’s credit card or other personal information available for the taking. Better defined parameters dictating which information needs to be protected can help identify the important information from the frivolous." Also from Canada, an example of when data, and how and who can access it, isn't properly handled."A top health official calls a former hospital employee’s inappropriate viewing of hundreds of patients’ personal health records an unprecedented breach.Health P.E.I.’s acting chief executive officer Denise Lewis Fleming says the organization has never dealt with a privacy issue of this magnitude.
An investigation ensued which determined a long-term employee had viewed the personal electronic files of 353 patients over the last three years.Lewis Fleming says the former employee, who has been terminated, was a caregiver who worked with patients in various units of the Queen Elizabeth Hospital in Charlottetown.She adds the former employee chose not to reveal why he or she accessed the records. Lewis Fleming cannot speculate on the motive.She adds no link has been identified among the hundreds of patients that had their personal files breached.She notes there was no clinical requirement for the former employee to access the personal health records.“This individual broke the rules, violating the privacy and confidentiality of Islanders who entrust our health care system and our staff to safeguard their personal health information,’’ says Lewis Fleming."