DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Texas Tech University Health Sciences Center notifies patients of billing statement breach

Posted on March 25, 2013 by Dissent

On March 22, MyHighPlains.com reported that Texas Tech University Health Sciences Center (TTUHSC) had experienced a breach that resulted in 700 patients’ billing statements being sent to the wrong addresses. The breach was also disclosed that day on TTUHSC’s web site and in a press release identical to the statement posted on their web site.

In response to a request I sent them, TTUHSC kindly sent a copy of their notification letter to patients of March 12, which I’ve uploaded here (.docx). The letter reads, in relevant part:

On February 20, 2013, Texas Tech University Health Sciences Center (TTUHSC) became aware of a technical error that occurred while processing billing statements for TTUHSC patients.  The error, which occurred on February 18, 2013, caused patient billing statements to be linked to incorrect patient addresses.  This may have resulted in your statement going to the wrong address.  The information contained in each of the billing statements included:

  • Name
  • Account number
  • Invoice number
  • Date service at TTUHSC
  • Charge amount
  • Department & Provider Name
  • Adjustment amount
  • Payments from insurance company(s)
  • Amount Due
  • Total Account Balance

You may have received a statement belonging to another individual.  To ensure that all patient information is maintained confidential, please return the statement to TTUHSC or destroy the copy.

We have not received any indication that the information contained in these statements has been accessed or used by an unauthorized individual.  However, we do recommend you call the toll-free numbers for any of the three major credit bureaus to make sure there has not been any type of unusual activity.  In addition you can ask to have a Fraud Alert put on your credit file.

We take very seriously our role of safeguarding your personal information.  TTUHSC apologizes for the inconvenience this situation may have caused you.  Please be assured that additional safeguards have been put into place.

Should you have any questions, do not hesitate to call our toll-free number at (877) 272-0570.

Very nicely written letter, in my opinion. I’m not sure why/whether patients would need to contact credit bureaus given the types of information involved, but all in all, a quickly detected breach with a clearly written notification letter probably goes a long way towards diffusing any anger or frustration patients might feel.

No related posts.

Category: Health Data

Post navigation

← Mossad web site data hacked by #OpIsrael, agents data leaked. Oh really?
OHSU laptop containing patient information stolen from researcher's vacation rental home →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Chinese hackers suspected in breach of powerful DC law firm
  • Qilin Emerged as The Most Active Group, Exploiting Unpatched Fortinet Vulnerabilities
  • CISA tags Citrix Bleed 2 as exploited, gives agencies a day to patch
  • McDonald’s McHire leak involving ‘123456’ admin password exposes 64 million applicant chat records
  • Qilin claims attack on Accu Reference Medical Laboratory. It wasn’t the lab’s first data breach.
  • Louis Vuitton hit by data breach in Türkiye, over 140,000 users exposed; UK customers also affected (1)
  • Infosys McCamish Systems Enters Consent Order with Vermont DFR Over Cyber Incident
  • Obligations under Canada’s data breach notification law
  • German court offers EUR 5000 compensation for data breaches caused by Meta
  • Air Force Employee Pleads Guilty to Conspiracy to Disclose Unlawfully Classified National Defense Information

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • DeleteMyInfo Wins 2025 Digital Privacy Excellence Award from Internet Safety Council
  • TikTok Loses First Appeal Against £12.7M ICO Fine, Faces Second Investigation by DPC
  • German court offers EUR 5000 compensation for data breaches caused by Meta
  • How to Build on Washington’s “My Health, My Data” Act
  • Department of Justice Subpoenas Doctors and Clinics Involved in Performing Transgender Medical Procedures on Children
  • Google Settles Privacy Class Action Over Period Tracking App
  • ICE Is Searching a Massive Insurance and Medical Bill Database to Find Deportation Targets

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.