Advertisement

31

Bottom Row Image

Advertisement

June 03, 2023

ODH Finalizes Revised Health Care Services Rules by: Allen R. Killworth
Wisconsin Supreme Court Affirms Court of Appeals Decision that Anti-... by: Janet Cain
Sixth Circuit Ruling Offers Clarity on Jurisdictional Border Between... by: Zachary T. Byers
Michigan Passes Amendment to Elliott-Larsen Civil Rights Act to... by: Adam S. Forman and Jennifer Barna
DOE Intends New Energy Earthshot to Decarbonize Transportation and... by: Lynn L. Bergeson and Carla N. Hutton
U.S. Supreme Court: Federal Labor Law Does Not Bar State Torts for... by: Jonathan J. Spitz and Richard F. Vitarelli
EPA Completes Verification Analysis of PFAS Scientific Testing of... by: Lynn L. Bergeson
Nevada State Court Rulings Highlight Importance of Strategic... by: Michael S. Levine and Cary D. Steklof
Minnesota’s New Paid Family and Medical Leave, Sick Leave, Amended... by: Katharine C. Weber and Daniel L. Blanchard
Eight Easy Ways to Enhance Your Social Media Presence by: Stefanie M. Marrone

June 02, 2023

June 01, 2023

May 31, 2023

Article By

Linn F. Freedman

Robinson & Cole LLP

Data Privacy + Security Insider

Related Practices & Jurisdictions

New Jersey

Advertisement

ShopRite Settles with NJ AG for Data Breach

Thursday, November 5, 2020

New Jersey Attorney General (AG) Gurbir S. Grewal announced on November 2, 2020, that his office has settled with ShopRite’s parent company, Wakefern Food Corp. (Wakefern) and two of its supermarket entities for $235,000 for a data breach that occurred in 2016.

According to the press release, the AG alleged that Wakefern violated HIPAA and the New Jersey Consumer Fraud Act (CFA) by “failing to properly dispose of electronic devices used to collect the signatures and purchase information of pharmacy customers” in its Kingston and Millville ShopRite stores.

The AG alleged that the electronic devices were discarded in dumpsters in 2016 without wiping them when newer technology was adopted. The incident “may have exposed names, phone numbers, birthdates, driver’s license numbers, prescription numbers, medication names, dates and times of pick-up or delivery, and customer zip codes.”

In addition to the fine, Wakefern is required to appoint a chief privacy officer, execute Business Associate Agreements with the entities that are operating its pharmacies, ensure that all ShopRite stores with pharmacies designate a HIPAA privacy officer and a HIPAA security officer, and provide online training for those officers on the HIPAA privacy and security rules.

Copyright © 2023 Robinson & Cole LLP. All rights reserved.National Law Review, Volume X, Number 310

Advertisement

Latest Legal News & Analysis

ODH Finalizes Revised Health Care Services Rules

Epstein Becker & Green, P.C.

Wisconsin Supreme Court Affirms Court of Appeals Decision that Anti-Assignment...

von Briesen & Roper, s.c.

Sixth Circuit Ruling Offers Clarity on Jurisdictional Border Between MSHA and OSHA

Ogletree, Deakins, Nash, Smoak & Stewart, P.C.

Michigan Passes Amendment to Elliott-Larsen Civil Rights Act to Protect Abortion...

Epstein Becker & Green, P.C.

DOE Intends New Energy Earthshot to Decarbonize Transportation and Industrial...

Bergeson & Campbell, P.C.

Advertisement

TRENDING LEGAL ANALYSIS

Beltway Buzz, June 2, 2023

By

Ogletree, Deakins, Nash, Smoak & Stewart, P.C.

Latin America Energy Updates: January – April 2023

By

Greenberg Traurig, LLP

U.S. Workforce Positive Post-Accident Marijuana Drug Test Rates Reach Twenty-Five...

By

Jackson Lewis P.C.

IP Industry Comment Opportunity At USPTO: Strategies to Address Counterfeiting and...

By

ArentFox Schiff LLP

Court Declines to Halt Vineyard Wind Project

By

Jones Walker LLP

NLRB Issues Memo on Non-competes Violating NLRA

By

Jones Walker LLP

Upcoming Legal Education Events

PE & Healthcare Summit Berlin 2023

Tuesday, June 6, 2023

FinTech University: FinTech and International Law

Tuesday, June 6, 2023

Ward and Smith's 2023 Health Care Breakfast and Learns at New Bern Golf & Country Club!

Wednesday, June 7, 2023

PCI DSS 4.0: Third-party Service Providers And Risk Management

Wednesday, June 7, 2023

Advertisement

About this Author

Linn F. Freedman, Robinson Cole Law Firm, Cybersecurity and Litigation Law Attorney, Providence

Linn F. Freedman

Partner

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She provides guidance on data privacy and cybersecurity compliance to a full range of public and private clients across all industries, such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine, and charitable organizations. Linn is a member of the firm's Business Litigation Group and chairs its Data Privacy + Cybersecurity Team. She is also a member of the Financial Services Cyber-Compliance Team (CyFi ...

[email protected]

401-709-3353