Protected Health Information Data Breaches Under HHS Investigation

Date30 Apr 2020

Comment0

CategoriesConsumer Protection, Employment & Technology Archive

Kehoe Law Firm, P.C. is making individuals aware of the following data breach cases of unsecured protected health information affecting 500 or more individuals currently under investigation by the U.S. Department of Health and Human Services, Office for Civil Rights:

Name of Covered Entity	State	Covered Entity Type	Individuals Affected	Breach Submission Date	Type of Breach	Location of Breached Information
Ascension Eastwood Clinics	MI	Healthcare Provider	999	04/23/2020	Unauthorized Access/Disclosure	Email
Psychiatric Associates of North Carolina, Professional Association	NC	Healthcare Provider	1081	04/20/2020	Unauthorized Access/Disclosure	Email
Beaumont Health	MI	Healthcare Provider	112211	04/17/2020	Hacking/IT Incident	Email
Advocate Aurora Health	WI	Healthcare Provider	27137	04/16/2020	Hacking/IT Incident	Email, Network Server
Medica Insurance Company	MN	Health Plan	802	04/15/2020	Unauthorized Access/Disclosure	Paper/Films
Medica Health Plans	MN	Health Plan	1710	04/15/2020	Unauthorized Access/Disclosure	Paper/Films
Hartford HealthCare	CT	Healthcare Provider	2651	04/13/2020	Hacking/IT Incident	Email
Doctors Community Medical Center	MD	Healthcare Provider	18481	04/13/2020	Hacking/IT Incident	Email
Arizona Endocrinology Center	AZ	Healthcare Provider	74122	04/10/2020	Unauthorized Access/Disclosure	Electronic Medical Record
Corpus Christi Rehabilitation Hospital	TX	Healthcare Provider	507	04/10/2020	Hacking/IT Incident	Email
Beacon Health Options, Inc.	MA	Business Associate	6723	04/10/2020	Loss	Other Portable Electronic Device
Rehabilitation Hospital of Southern New Mexico	NM	Healthcare Provider	1843	04/10/2020	Hacking/IT Incident	Email
UPMC Altoona Regional Health Services	PA	Healthcare Provider	13911	04/10/2020	Hacking/IT Incident	Email
Brandywine Counseling & Community Services, Inc	DE	Healthcare Provider	4262	04/10/2020	Hacking/IT Incident	Network Server
Colorado Department of Human Services, Office of Behavioral Health	CO	Healthcare Provider	8132	04/07/2020	Unauthorized Access/Disclosure	Network Server
Healthcare Resource Group, Inc.	WA	Business Associate	3009	04/07/2020	Hacking/IT Incident	Email
Andrews Braces	NV	Healthcare Provider	16622	04/07/2020	Hacking/IT Incident	Network Server
Doctors HealthCare Plans, Inc.	FL	Health Plan	500	04/07/2020	Hacking/IT Incident	Email
Child, Family and Community Services, Inc.	CA	Health Plan	1658	04/03/2020	Theft	Laptop, Other Portable Electronic Device
University of Utah	UT	Healthcare Provider	5000	04/03/2020	Hacking/IT Incident	Email
Confidio, LLC	MD	Business Associate	3600	03/31/2020	Hacking/IT Incident	Email
Washington University School of Medicine	MO	Healthcare Provider	14795	03/31/2020	Hacking/IT Incident	Email
Affordacare Urgent Care Clinics	TX	Healthcare Provider	57411	03/31/2020	Hacking/IT Incident	Network Server
University of Minnesota Physicians	MN	Healthcare Provider	683	03/30/2020	Hacking/IT Incident	Email
Brandywine Urology Consultants, PA	DE	Healthcare Provider	131825	03/27/2020	Hacking/IT Incident	Desktop Computer, Email, Laptop, Network Server
Crossroads Technologies, Inc.	PA	Business Associate	897	03/27/2020	Hacking/IT Incident	Network Server
Tryon Medical Partners, PLLC	NC	Healthcare Provider	701	03/27/2020	Unauthorized Access/Disclosure	Email
Stockdale Radiology	CA	Healthcare Provider	10700	03/27/2020	Hacking/IT Incident	Desktop Computer
David S Daley, DMD	AZ	Healthcare Provider	1000	03/26/2020	Theft	Network Server
New Jersey Department of Human Services	NJ	Health Plan	2300	03/25/2020	Hacking/IT Incident	Network Server
VA Sierra Nevada Health Care System	NV	Healthcare Provider	702	03/25/2020	Unauthorized Access/Disclosure	Paper/Films
Renew Wellness Center, PLLC	MT	Healthcare Provider	730	03/23/2020	Theft	Email, Other Portable Electronic Device
FACKLER FAMILY CHIROPRACTIC, LLC	OH	Healthcare Provider	1731	03/23/2020	Theft	Paper/Films
Health Care Service Corporation	IL	Health Plan	575	03/23/2020	Unauthorized Access/Disclosure	Email
Ambry Genetics Corporation	CA	Healthcare Provider	232772	03/22/2020	Hacking/IT Incident	Email
University of Utah	UT	Healthcare Provider	3670	03/21/2020	Hacking/IT Incident	Email
Georgia Department of Human Services	GA	Healthcare Clearing House	500	03/20/2020	Loss	Paper/Films

Source: Ocrportal.hhs.gov (Accessed 04.30.2020)

NOTE: The U.S. Department of Health and Human Services, Office for Civil Rights, Breach Portal, lists all breaches reported within the last 24 months that are currently under investigation by the Office for Civil Rights. The data reported herein does not include all cases currently under investigation by the Office for Civil Rights. Resolved data breach reports and/or reports older than 24 months can be viewed at Ocrportal.hhs.gov.

Have You Been Impacted by A Data Breach?

If so, please either contact Kehoe Law Firm, P.C. Partner Michael Yarnoff, Esq., (215) 792-6676, Ext. 804, [email protected], complete the form on the right or send an e-mail to [email protected] for a free, no-obligation case evaluation of your facts to determine whether your privacy rights have been violated and whether there is a basis for a data privacy class action.

Examples of the type of relief sought by data privacy class actions, include, but are not limited to, reimbursement of identity theft losses and of out-of-pocket costs paid by data breach victims for protective measures such as credit monitoring services, credit reports, and credit freezes; compensation for time spent responding to the breach; imposition of credit monitoring services and identity theft insurance, paid for by the defendant company; and improvements to the defendant company’s data security systems.

Data privacy class actions are brought on a contingent-fee basis; thus, plaintiffs and the class members do not pay out-of-pocket attorney’s fees or litigation costs. Subject to court approval, attorney’s fees and litigation costs are derived from the recovery obtained for the class.