DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Heyman HospiceCare notifies patients after laptop stolen from employee's car

Posted on February 17, 2013 by Dissent

The Rome News-Tribune in Georgia reports:

Heyman HospiceCare is offering patients who may have had their personal information on a stolen and still-missing laptop a free one-year membership to a credit monitoring service, according to a news release from Floyd Medical Center.

According to the news release:

A password-protected laptop was stolen Jan. 4 from an employee’s car. The laptop may have contained clinical and demographic information about patients, including names, addresses, phone numbers, birth dates, Social Security numbers, insurance policy numbers.

Read more on the Rome News-Tribune.

A  notice is linked from the medical center’s home page.

Privacy Notice for Heyman HospiceCare at Floyd Patients

Heyman HospiceCare at Floyd (“Heyman HospiceCare”) is committed to protecting the personal information it maintains on behalf of its patients. Regrettably, this notice is regarding an incident involving some of that information.

On January 4, 2013, Heyman HospiceCare became aware that a password-protected laptop went missing from an employee’s car earlier that same day. The incident was reported to the police, and Heyman HospiceCare immediately began a thorough investigation to identify the information that was contained on the laptop. To date, the laptop has not been located. Although information on the laptop was not encrypted, it was protected by additional security software that would make it difficult for the average person to access any information.

Heyman HospiceCare’s investigation concluded that the laptop may have contained clinical and demographic information about patients, including names, addresses, phone numbers, dates of birth, and Social Security numbers, as well as insurance policy numbers, diagnoses, visit notes, physician names, caregiver names, and advance directives. Patient financial information was not on the laptop, and medical information has not been lost. The incident affected only certain patients treated between July 1, 2006, and January 3, 2013.

Heyman HospiceCare has no reason to believe that the laptop was taken for the information it contained, or that the information has been accessed or used improperly. In an abundance of caution, Heyman HospiceCare began mailing letters to affected individuals on February 15, 2013. Heyman HospiceCare is also providing a dedicated call center to answer questions for affected patients. Heyman HospiceCare is also offering eligible individuals a free one-year membership in three-bureau credit monitoring service provided by TransUnion, one of the three major nationwide credit reporting companies. If you believe you are affected but do not receive a letter by February 28, 2013, please call toll free 1-866-264-1049, Monday through Friday between 9 a.m. and 7 p.m. Eastern time.

Heyman HospiceCare deeply regrets any inconvenience or concern this may cause patients. Heyman HospiceCare is committed to safeguarding patients’ personal information. To help prevent something like this from happening in the future, Heyman HospiceCare is implementing a more disciplined approach to its encryption for all laptop computers and re-educating staff on policies and procedures for securing such mobile devices.

Hospice is usually a relatively short-term care, available for patients not expected to live more than 6 months. So why were data for patients from 2006 on the laptop? What was this employee’s job and why did so much data need to leave the office?

Earlier this year, Hospice of North Idaho was fined $50,000 by HHS after a laptop with PHI was stolen from an employee’s car and HHS’s investigation revealed that the hospice had not conducted a risk analysis and had no policies in place to secure mobile devices. Had Heyman HospiceCare conducted a risk analysis? Did they have policies in place? Eventually, we’ll find out, but it is frustrating to learn that so many years after HIPAA went into effect, we are still reading reports like this one.

Category: Health Data

Post navigation

← CO: FBI asked to aid probe of Iron Horse breach (updated)
Sierra View District Hospital computers possibly compromised →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Fraudsters, murderers, students: who the GRU assembled a team of hacker provocateurs from and why it failed
  • Order of Psychologists of Lombardy fined 30,000 € for inadequate data security protection and detection following ransomware attack
  • Lower Merion School District says a data breach was caused by a computer glitch
  • After $1 Million Ransom Demand, Virgin Islands Lottery Restores Operations Without Paying Hackers
  • Junior Defence Contractor Arrested For Leaking Indian Naval Secrets To Suspected Pakistani Spies
  • Mysterious leaker GangExposed outs Conti kingpins in massive ransomware data dump
  • Resource: HoganLovells Asia-Pacific Data, Privacy and Cybersecurity Guide 2025
  • Class action settlement following ransomware attack will cost Fred Hutchinson Cancer Center about $52 million
  • Comstar LLC agrees to corrective action plan and fine to settle HHS OCR charges
  • Australian ransomware victims now must tell the government if they pay up

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Fears Grow Over ICE’s Reach Into Schools
  • Resource: HoganLovells Asia-Pacific Data, Privacy and Cybersecurity Guide 2025
  • She Got an Abortion. So A Texas Cop Used 83,000 Cameras to Track Her Down.
  • Why AI May Be Listening In on Your Next Doctor’s Appointment
  • Watch out for activist judges trying to deprive us of our rights to safe reproductive healthcare
  • Nebraska Bans Minor Social Media Accounts Without Parental Consent
  • Trump Taps Palantir to Compile Data on Americans

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.