Is your company leaking personal data like Facebook?

Facebook has once again come under some heat for the possible compromising of personal information from its customers.  Facebook permits secondary access to accounts, which allows 3rd parties to display ads, applications, and the like.  Apparently there was a flaw in the system, allowing those 3rd party users to access far more than they were supposed to, …

Continue reading Is your company leaking personal data like Facebook?

What is an OSHA Form 300 and why do I have to post it?

Required posting of injury report.  All employers with 10 or more employees must post an OSHA Form 300a in a prominent area at their facilities.  This form reports all of your workplace injuries for last year.  Certain low-hazard industries have partial exemption from some of the OSHA reporting requirements.  (Determined by your SIC code, but mainly includes retail, …

Continue reading What is an OSHA Form 300 and why do I have to post it?

Medical Privacy Violations

Today the Boston Globe reported the dumping of thousands of sensitive medical records at a local garbage transfer station: http://www.boston.com/news/health/articles/2010/08/13/mass_hospitals_investigate_exposure_of_records/ It seems an obvious breech of HIPAA patient privacy rights, among other things.  Apparently, the records were in the hands of a billing company that helped with collections for numerous hospitals.  When the billing company was …

Continue reading Medical Privacy Violations