Advertisement
Canada markets close in 1 hour 12 minutes
  • S&P/TSX

    22,183.82
    +76.74 (+0.35%)
     
  • S&P 500

    5,252.84
    +4.35 (+0.08%)
     
  • DOW

    39,776.41
    +16.33 (+0.04%)
     
  • CAD/USD

    0.7385
    +0.0013 (+0.17%)
     
  • CRUDE OIL

    83.09
    +1.74 (+2.14%)
     
  • Bitcoin CAD

    95,521.25
    +2,329.91 (+2.50%)
     
  • CMC Crypto 200

    885.54
    0.00 (0.00%)
     
  • GOLD FUTURES

    2,240.40
    +27.70 (+1.25%)
     
  • RUSSELL 2000

    2,123.29
    +8.95 (+0.42%)
     
  • 10-Yr Bond

    4.2060
    +0.0100 (+0.24%)
     
  • NASDAQ

    16,380.51
    -19.01 (-0.12%)
     
  • VOLATILITY

    12.98
    +0.20 (+1.56%)
     
  • FTSE

    7,952.62
    +20.64 (+0.26%)
     
  • NIKKEI 225

    40,168.07
    -594.66 (-1.46%)
     
  • CAD/EUR

    0.6841
    +0.0036 (+0.53%)
     

Walgreens to Pay $1.4M for Sharing a Patient's Medical Info With Her Ex

Walgreens has been ordered to pay an Indiana woman $1.4 million in damages, all because one of its pharmacists made some poor decisions while caught up in a love triangle. Walgreens appealed the judgment, which an Indiana judge denied Nov. 14, confirming Walgreens' negligence in the case.

The summary of events in Judge John Baker's opinion reads like the plot of a bad soap opera. It starts with Abigail Hinchy (the plaintiff) and her on-again off-again boyfriend Davion Peterson: Hinchy gave birth to Peterson's son in 2010, but at some point in 2009, Peterson started dating Audra Withers, a Walgreens pharmacist. Throughout her relationship with Peterson, Hinchy filled all her prescriptions at a Walgreens pharmacy, meaning Withers had access to her information.

When the case was tried in front of a jury, evidence showed Withers obtained Hinchy's private health information and Social Security number, which she shared with Peterson. Peterson then shared the info with at least three other people. The jury found Walgreens vicariously liable for the breach, because it was negligent in training Withers to understand her role in keeping health records confidential, and Withers was "acting in the course of her employment" when she took Hinchy's data.

"When you're talking about protected medical history, we're not talking about a selfie, we're really talking about something very serious," said Adam Levin, identity theft expert and chairman and co-founder of Credit.com. "There's an enormous amount of information there that can be used to commit financial crimes."

ADVERTISEMENT

In this case, a Social Security number was compromised in addition to sensitive medical information. That's a scary thought considering a Social Security number can be used to apply for credit in your name, access other medical records, file for a tax refund, and steal a person's identity. If you're worried your Social Security number has been compromised, you should monitor your credit regularly for signs of fraud. You can get copies of your credit reports for free once a year, and you can check your credit scores for free every month on Credit.com. Employees like Withers are often the weak link in company data breaches. "You can't stop someone from doing something stupid, but unfortunately, doing something stupid can impact an entire organization," Levin said.

Walgreens spokesman Phil Caruso told Credit.com that the company plans to appeal the decision.

"We take seriously our responsibility to safeguard the privacy of medical records in our possession," he said. "The pharmacist in this case admitted she was aware of our strict privacy policy and knew she was violating it. She was appropriately disciplined for her action. We believe it is a misapplication of the law to hold an employer liable for the actions of one employee who knowingly violates company policy."


More from Credit.com