After failing to notify victims for more than a year following a data breach, CoPilot Provider Support Services will pay $130,000 for violating New York state law, Modern Healthcare reports. CoPilot suffered the breach in October 2015, when 220,000 patients had their data compromised. The company did not inform patients of the incident until January 2017. New York state law tells companies to notify data breach victims as soon as possible. CoPilot claimed the delay was the result of an FBI investigation, but the agency never told the company it could not notify affected individuals. As part of its settlement with the New York attorney general, CoPilot must revise its policy to ensure compliance with state law.
If you want to comment on this post, you need to login.