A data breach that exposed the records of over two million clients of Ohio-based healthcare provider EyeMed Vision Care has led to penalties totalling $4.5m for the company. The case highlights the dangers of poor risk assessments and, particularly, failure to use multi-factor authentication (MFA).
EyeMed’s systems were breached when
Free Trial
Register for free to keep reading.
To continue reading this article and unlock full access to GRIP, register now. You’ll enjoy free access to all content until our subscription service launches in early 2026.
- Unlimited access to industry insights
- Stay on top of key rules and regulatory changes with our Rules Navigator
- Ad-free experience with no distractions
- Regular podcasts from trusted external experts
- Fresh compliance and regulatory content every day