Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

USA: Cancer & Hematology Centers of Western Michigan notifies OCR of data security incident

The Cancer & Hematology Centers of Western Michigan, P.C. notified, on 18 March 2022, the U.S. Department of Health and Human Services ('HHS') Office for Civil Rights ('OCR') of a data security incident affecting 43,071 individuals. In particular, the Cancer & Hematology Centers stated that in late December it was the victim of a ransomware attack that affected a portion of its database, during which unauthorised individuals may have accessed information relating to its patients and employees.

More specifically, the Cancer & Hematology Centers stated that, in relation to its patients, the information affected may have included names and certain components of their health records, and the social security numbers and bank information of its employees may have been accessed.

To this end, the Cancer & Hematology Centers stated that it had partnered with an outside team of respected IT and forensic experts to restore its systems and to ensure its data security.

You can read the press release here and access details on the OCR portal here.