- HIPAA Update - http://blogs.hcpro.com/hipaa -

Missing unencrypted laptop may contain PHI of nearly 8,000 patients

securitycomputer [1]A password-protected unencrypted laptop containing the PHI of approximately 8,000 patients was reported missing from Riverside County Regional Medical Center in Moreno Valley, California, according to The Press Enterprise. [2]

A breach notification letter [3] sent to affected patients states that the medical center learned December 1, 2014, about the missing laptop that was used by its ophthalmology and dermatology clinics. This is the second time in less than a year that the medical center reported a missing laptop, according to The Press Enterprise.

The medical center notified law enforcement and began its own internal investigation, but was unable to find the laptop at the time of the January 29, 2015 letter, which states that the laptop may have contained the following patient information:

The medical center does not believe the laptop was taken in an effort to access or misuse patient information. However, it is offering identity protection alerts for affected patients, according to the letter.