DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

HealthSouth Rehabilitation Hospital of Round Rock notifies 1,359 patients whose PHI was on laptop stolen from employee’s car

Posted on December 22, 2015 by Dissent

ROUND ROCK, Texas – HealthSouth Rehabilitation Hospital of Round Rock, previously Reliant Rehabilitation Hospital Central Texas, is currently notifying potentially affected individuals that a laptop containing unsecured protected health information was stolen from the trunk of an employee’s vehicle on or around Oct. 21, 2015. The information on the laptop varied by individual but may have included an individual’s name, address, date of birth, Social Security number, phone number, insurance number, diagnosis, referral ID number or medical record number. At this time, the hospital is working to notify the 1,359 potentially affected individuals via letter.

HealthSouth Round Rock discovered the theft on Oct. 26, 2015 and promptly filed a report with the City of Austin Police Department, undertook efforts to locate and recover the stolen laptop, and conducted a detailed and time consuming forensic process to determine what information may have been on the laptop and to whom that information related.

The laptop was password protected and, at this time, HealthSouth Round Rock has no evidence the information on the laptop has been accessed or used for purposes of identity theft or otherwise. The hospital’s information systems are not accessible from the stolen laptop.

The hospital was recently acquired by an affiliate of HealthSouth on Oct. 1, 2015. While it is HealthSouth’s policy to encrypt all laptops, the laptop at issue which was used at the Reliant hospital prior to the acquisition was not encrypted. As part of HealthSouth’s post-acquisition integration process, all Reliant laptops were required to be returned and exchanged for encrypted HealthSouth laptops. The Reliant laptop at issue, however, was stolen before being returned to HealthSouth.

HealthSouth is committed to the safety and privacy of its patients and genuinely regrets any hardships or inconveniences this incident may have caused. The hospital has begun sending notification letters to all potentially affected individuals. The notification letter encourages potentially affected individuals to be vigilant for signs of possible identity theft and provides that HealthSouth is offering free credit monitoring and identity theft protection services through its incident response provider. Potentially affected individuals are encouraged to visit the website www.identitytheft.gov, which provides a step-by-step process to respond to, and recover from, incidents of identity theft. Individuals with questions or in need of assistance regarding this incident may contact the incident response provider at 1-800-545-2111, Monday through Friday from 8 a.m. to 5 p.m. CT.

About HealthSouth Rehabilitation Hospital of Round Rock
Acquired by HealthSouth on Oct. 1, 2015, HealthSouth Rehabilitation Hospital of Round Rock is a 75-bed inpatient rehabilitation hospital that offers comprehensive physical rehabilitation services. The hospital is located at 1400 Hesters Crossing in Round Rock and on the Web at www.healthsouthroundrock.com.

About HealthSouth
HealthSouth is one of the nation’s largest providers of post-acute healthcare services, offering both facility-based and home-based post-acute services in 34 states and Puerto Rico through its network of inpatient rehabilitation hospitals, home health agencies, and hospice agencies. HealthSouth can be found on the web at www.healthsouth.com

Source: HealthSouth Corporation

Category: Health DataTheftU.S.

Post navigation

← Feds charge ex-Alabama IRS employee, 3 others in $1 million ID scheme
[Hello Kitty Update] Security Advisory: Corrected a vulnerability involving personal information of SanrioTown.com members →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • CoinMarketCap Hacked, Scrambles to Remove Malicious Wallet Verification Popup
  • Montana Attorney General launches investigation into Lee Enterprises data breach
  • AT&T gets preliminary approval for $177 million data breach settlement
  • Aflac notifies SEC of breach suspected to be work of Scattered Spider
  • Former JBLM soldier pleads guilty to attempting to share military secrets with China
  • No, the 16 billion credentials leak is not a new data breach — a wake-up call about fake news (Updated)
  • Tonga’s health system hit by cyberattack (1)
  • Russia Expert Falls Prey to Elite Hackers Disguised as US Officials
  • Proposed class action settlement in In re Netgain Technology litigation
  • Qilin Offers “Call a lawyer” Button For Affiliates Attempting To Extort Ransoms From Victims Who Won’t Pay

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Markup caught 4 more states sharing personal health data with Big Tech
  • Privacy in the Big Sky State: Montana’s Consumer Privacy Law Gets Amended
  • UK Passes Data Use and Access Regulation Bill
  • Officials defend Liberal bill that would force hospitals, banks, hotels to hand over data
  • US Judge Invalidates Biden Rule Protecting Privacy for Abortions
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.