DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

UCSF notifying 8,294 gastroenterology patients whose PII and PHI were on laptop stolen from doctor's car

Posted on November 21, 2013 by Dissent

Statement from UCSF:

UC San Francisco is alerting some individuals to the theft of a physician’s personal laptop computer that contained personal and health information.

While the physician believed the laptop was encrypted, this could not be confirmed. As a result, the individuals involved are being notified.

The security of protected health information at UCSF is of utmost importance. While there is no evidence at this time that there has been any attempted access or attempted use of the information stored on the laptop, UCSF is responding with the highest level of caution and concern.

Notification letters have been sent to the 8,294 individuals whose information was contained on the laptop. The California Department of Public Health and the California Attorney General have been alerted, and federal authorities are also being notified. Additionally, a special phone line has been established to provide information and assistance to individuals who receive the notification letters, and credit monitoring is being offered to some individuals whose Social Security numbers were involved.

UCSF learned on Sept. 25 that the personal laptop computer had been stolen that evening from the locked vehicle of the physician, based in the Division of Gastroenterology at the UCSF School of Medicine. Upon discovering the theft, the physician promptly alerted San Francisco police, UCSF police and UCSF officials.

Since UCSF could not verify that the laptop was encrypted, UCSF immediately began a technical analysis to identify what information was on the laptop. The analysis revealed that the laptop contained some personal and health information of individuals, including dates of birth, medical record numbers and Social Security numbers.

Also stolen were paper documents for four patients, some of whose information was on the laptop. Information in the paper documents contained some personal and health information, including health insurance subscriber numbers.

The UCSF investigation determined that it was appropriate for the physician to have this information; however, the use of an unencrypted laptop for business purposes is against UCSF’s policy and practice.

UCSF is committed to maintaining the privacy of personal information and has taken additional steps to secure that information, including strengthening educational and operational processes for information security.

Should you have any questions about this matter, please call 1-800-981-7567 (for international callers, please dial 1-503-597-7671).

UCSF is a leading university dedicated to promoting health worldwide through advanced biomedical research, graduate-level education in the life sciences and health professions, and excellence in patient care. It includes top-ranked graduate schools of dentistry, medicine, nursing and pharmacy, a graduate division with nationally renowned programs in basic biomedical, translational and population sciences, as well as a preeminent biomedical research enterprise and two top-ranked hospitals, UCSF Medical Center and UCSF Benioff Children’s Hospital.

Related posts:

  • Almost 10,000 being notified of January computer theft at UC San Francisco Family Medicine Center
  • Personal laptop with unencrypted information on UCSF Medical Center patients stolen from employee's car
  • UCSF patient records possibly compromised
  • UCSF patient records possibly compromised
Category: Health Data

Post navigation

← Flamingo Resort and Spa notifying employees after virus may have exposed payroll information
NJ: Two Defendants Admit Roles In $65 Million Stolen Identity Income Tax Refund Fraud Scheme →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Horizon Healthcare RCM discloses ransomware attack in December
  • Disgruntled IT Worker Jailed for Cyber Attack, Huddersfield
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Texas Centers for Infectious Disease Associates Notifies Individuals of Data Breach in 2024
  • Battlefords Union Hospitals notifies patients of employee snooping in their records
  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Supreme Court Decision on Age Verification Tramples Free Speech and Undermines Privacy
  • New Jersey Issues Draft Privacy Regulations: The New
  • Hacker helped kill FBI sources, witnesses in El Chapo case, according to watchdog report
  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.