A tragic accident involving the drowning of a young boy also turned into a privacy breach nightmare for the toddler's adoptive parents, a lawsuit filed against an Oklahoma county hospital alleges.
The complaint, filed by the child's adoptive parents, Gerl and Denise Russell, alleges that unauthorized employees of McAlester Regional Health Center violated HIPAA, breaching their son Keon's electronic health information on July 17, 2016, when the 2-year old was transported to the hospital's emergency department where he died after a swimming pool accident.
David Holtzman's comments are featured in this article.