Q: Non- Disclosure of security breach
Even assuming that 2.5 years were not enough time to discover to disclose data breach.
Legal case was filed 1.5 year ago.
Regardless demurrers and discovery objections,
was legal case a trigger for hospital to revisit plaintiff's records and determine that security breach occurred non-compliant with their policies?
Lawyers, want to be a Justia Connect Pro too? Learn more ›
- California
- (916) 704-3009
- View Profile
- Answered
A:
Based on the details provided, it seems that the legal case filed 1.5 years ago should have prompted the hospital to review the plaintiff's records and investigate whether a security breach occurred that did not comply with their internal policies. Here are a few key points to consider under California law:
1. California Civil Code Section 1798.82 requires businesses, including hospitals, to disclose any breach of the security of their systems to any California resident whose unencrypted personal information was, or is reasonably believed to have been, acquired by an unauthorized person.
2. The disclosure must be made in the most expedient time possible and without unreasonable delay, consistent with the legitimate needs of law enforcement or any measures necessary to determine the scope of the breach and restore the reasonable integrity of the data system.
3. The filing of a legal case related to the potential security breach should have served as a clear indication for the hospital to conduct a thorough investigation into the plaintiff's records and their own data security practices.
4. Regardless of any demurrers (objections to the legal sufficiency of the complaint) or discovery objections raised by the hospital in the legal proceedings, the hospital still has an independent obligation under California law to investigate and disclose any security breach that may have occurred.
In conclusion, the legal case filed 1.5 years ago should have triggered the hospital to revisit the plaintiff's records and determine whether a security breach occurred that did not comply with their own policies and California law. The hospital's failure to do so may constitute a violation of the California Civil Code and could potentially strengthen the plaintiff's case against the hospital.
Justia Ask a Lawyer is a forum for consumers to get answers to basic legal questions. Any information sent through Justia Ask a Lawyer is not secure and is done so on a non-confidential basis only.
The use of this website to ask questions or receive answers does not create an attorney–client relationship between you and Justia, or between you and any attorney who receives your information or responds to your questions, nor is it intended to create such a relationship. Additionally, no responses on this forum constitute legal advice, which must be tailored to the specific circumstances of each case. You should not act upon information provided in Justia Ask a Lawyer without seeking professional counsel from an attorney admitted or authorized to practice in your jurisdiction. Justia assumes no responsibility to any person who relies on information contained on or received through this site and disclaims all liability in respect to such information.
Justia cannot guarantee that the information on this website (including any legal information provided by an attorney through this service) is accurate, complete, or up-to-date. While we intend to make every attempt to keep the information on this site current, the owners of and contributors to this site make no claims, promises or guarantees about the accuracy, completeness or adequacy of the information contained in or linked to from this site.
