The data that may have been breached includes one or more of the following: name, email address, telephone number, Social Security number, provider information, insurance information, date of birth, and address. Law enforcement, who discovered the privacy breach, believes this information may have been misused by participants in an identity theft ring.
"The [California] organization learned from local law enforcement of an ongoing criminal investigation of a former temporary employee...with the suspicion of [patients'] identity theft."Unfortunately, this is another case where law enforcement, rather than the organization holding the PII, discovered the insider thefts. Organizations seeking to proactively detect breaches can utilize low-cost on-demand SaaS analytics services.
- IT Business Net
Download a white paper on identity theft and patient privacy breach detection. Learn how to proactively identify unauthorized breaches of patient data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) California Healthcare Provider Acts to Notify Individuals of Potential Personal Information Access Related to Former Employee - www.ITbusinessnet.com, 08/29/2014