With medical marijuana and adult use markets growing daily, some operators are now becoming aware of sensitive data and HIPPA requirements. And ounce of prevention is worth $1 million cure. Or in this case a potential million dollar fine.
“As a medical data breach, it may be that there could be consequences under the US Health Insurance Portability and Accountability Act (HIPPA) of 1996, which demands strict security to be implemented by controllers of protected health information (PHI). Under the law, those who violate HIPPA can face multi-million-dollar fines or jail time.”
“According to VPNMentor, personally identifiable information (PII) belonging to 30,000 individuals was leaked. In total, over 85,000 files were exposed to anyone who stumbled across the database.“
“The full names of patients and staff members, dates of birth, phone numbers, physical addresses, email addresses, medical ID numbers, cannabis used, price, quantity, and receipts were all available to view.”