The Massachusetts Attorney General has announced that the Beth Israel Deaconess Medical Center (“BIDMC”) in Boston has agreed to pay a total of US$100,000 in settlement of allegations relating to a data breach, where a laptop containing unencrypted personal data of 4,000 patients and employees was stolen from an unlocked office of a BIDMC physician. As part of the settlement, BIDMC must also “take steps to ensure future compliance with state and federal data security laws and regulations,” including the implementation of enhanced device management, encryption and training policies.

Attorney General’s press release