File this under the I-didn’t-see-this-one-coming dept.:
Chad Terhune of the L. A. Times reports:
In an ongoing legal battle over confidential patient data, a state judge refused to grant Kaiser Permanente access to the personal computers and email account of a couple the healthcare giant hired to store nearly 300,000 hospital files.
In October, Kaiser sued the Deans, accusing them of violating their contract by not returning all of its patient information as required when Kaiser picked up the paper records. On Dec. 31, the Deans said, they deleted all of the computer information they had related to Kaiser patients.
At a hearing Thursday in Indio, Kaiser sought a preliminary injunction that would have ordered the Deans to allow a forensic consultant access to their computers and email account.
Hopp denied that request and granted a narrower preliminary injunction against the Deans, barring them from disclosing any confidential patient information.
Read more on the L.A. Times.
Ordering the Dean’s not to disclose patient information is a poor second cousin to adequately securing PHI or ensuring that it’s been properly wiped from any drives that could be stolen. I’m not sure I understand the basis for the judge’s ruling, and there’s no explanation available in the docket at this time.