Breach, Data Security

Court tosses suit against UCLA health system over exposed patient data

The University of California Los Angeles Health System is not to blame for Norma Lozano's medical records being accessed without authorization and distributed to her ex-boyfriend among others, a California court ruled Thursday. 

Lozano had sued UCLA saying, according to The Hill, that a temp worker who was her ex-boyfriend's current used the login credentials of a doctor to obtain access to her medical records, photograph private information, including the revelation that Lozano had a sexually transmitted disease, then texted it to others.

Lozano accused UCLA of being lax when it came to protecting patient data, including failing to enable a "break the glass" layer of security that would compel users to input a password twice and provide a reason they need to access records. The hospital protested the claims and the court agreed with it, throwing out the $1.2 million lawsuit.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.