Considering Connecticut's databreach laws requires:
"Any person who conducts business in this state, and who, in the ordinary course of such person's business, owns, licenses or maintains computerized data that includes personal information, shall disclose any breach of security following the discovery of the breach to any resident of this state whose personal information was, or is reasonably believed to have been, accessed by an unauthorized person through such breach of security. Such disclosure shall be made without unreasonable delay,... " (§36A-701(b)).

Ginny Jones 
(Virginia A. Jones, CRM, FAI) 
Records Manager 
Information Technology Division 
Newport News Dept. of Public Utilities 
Newport News, VA 
[log in to unmask] 


-----Original Message-----
From: Records Management Program [mailto:[log in to unmask]] On Behalf Of Larry Medina
Sent: Thursday, December 03, 2009 3:09 PM
To: [log in to unmask]
Subject: [RM] RAINdrip: 1.5 million medical records exposed

..SIX MONTHS ago!!  Unfortunately, it wasn't reported until now.

http://bit.ly/7YSGUN

Larry
[log in to unmask]

List archives at http://lists.ufl.edu/archives/recmgmt-l.html
Contact [log in to unmask] for assistance
To unsubscribe from this list, click the below link. If not already present, place UNSUBSCRIBE RECMGMT-L or UNSUB RECMGMT-L in the body of the message.
mailto:[log in to unmask]

List archives at http://lists.ufl.edu/archives/recmgmt-l.html
Contact [log in to unmask] for assistance
To unsubscribe from this list, click the below link. If not already present, place UNSUBSCRIBE RECMGMT-L or UNSUB RECMGMT-L in the body of the message.
mailto:[log in to unmask]