DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Millville ShopRite experiences data security incident

Posted on February 27, 2018 by Dissent

Maxwell Reil reports:

A ShopRite pharmacy in Millville experienced a data security incident involving the loss of personal and medical information, according to Wakefern Food Corp., the cooperative that supplies goods and support services to ShopRite stores and pharmacies.

According to a news release, a device used in the pharmacy to capture customer signatures was inadvertently disposed of in June. Customers who purchased prescriptions at the location between 2007 and 2013 signed the device to confirm acknowledgement of the store’s privacy policy and payment by their insurance provider. Customers who purchased over-the-counter products containing pseudoephedrine, such as cold or nasal medications, also had personal information on the device.

Read more on Press of Atlantic City.  Wakefern’s notice reads:

A Message to Our Customers

On January 11, 2018, Union Lake Supermarket, LLC, confirmed that the pharmacy located in the ShopRite of Millville, NJ experienced a data security incident involving the loss of personal and medical information. A device used in the pharmacy to capture customer signatures was inadvertently disposed of in June 2016.

Customers who had prescriptions filled at the pharmacy located in the ShopRite of Millville, NJ between 2007 and 2013 signed this device to confirm acknowledgement of the store’s privacy policy and payment by their insurance provider (if applicable). The personal and medical information included name, phone number, date of birth, prescription number, medication name, date and time of pick-up or delivery, signature, and zip code.

In addition, customers who purchased an over-the-counter product containing pseudoephedrine (“PSE”), such as certain cold or nasal medications, at the pharmacy located in ShopRite of Millville, NJ between 2007 and 2013 had personal and medical information stored on this device in order to meet legal requirements regarding PSE sales. The personal and medical information included name, driver’s license number, zip code, and product purchased.

These pharmacy customers and the customers who purchased an over-the-counter product containing PSE have been notified directly by ShopRite via U.S. Mail.

It is important to note that Social Security numbers and debit and credit card information were not stored on this device.

We have no evidence that any of the personal or medical information from the device has been accessed or misused in any way, but ShopRite is alerting certain customers who shopped at the pharmacy located in the ShopRite of Millville, NJ so that they may take any necessary precautions to safeguard their information.

We have provided a list of recommended steps for preventing identity theft and fraud on this website. We recommend that customers regularly review the explanation of benefits statements that they receive from their health plan. If they see any service that they did not receive, contact the health plan at the number on the statement. Additionally, we suggest that customers monitor their financial accounts and, if they see any unauthorized activity, promptly contact their financial institution.

The ShopRite store is taking steps to prevent recurrence of similar incidents, including providing supplemental privacy and security training for pharmacy staff and strengthening security policies relating to the appropriate removal of data from, and disposal of, computers and devices. We sincerely regret any inconvenience or concern caused by this incident.

Please see our FAQs and Resources pages for additional information or call us at 1-800-954-5210.

Category: ExposureHealth DataU.S.

Post navigation

← Arkansas Man Sentenced to Prison for Developing and Distributing Prolific Malware
Bathurst pharmacist to pay $17,000 for texting private information about a patient →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Alleged Geisinger hacker will defend himself pro se.
  • Tallahassee Memorial Healthcare reveals it was also impacted by Cerner/Legacy Oracle cyberattack
  • Hospital cyberattack investigation complete, no formal review needed
  • Largest Ever Seizure of Funds Related to Crypto Confidence Scams
  • IMPACT: 170 patients harmed as a result of Qilin’s ransomware attack on NHS vendor Synnovis
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • UBS reports data leak after cyber attack on provider, client data unaffected
  • Scania confirms insurance claim data breach in extortion attempt
  • Cybersecurity takes a big hit in new Trump executive order
  • Episource notifying 5.4 million patients of cyberattack in January

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data
  • DOJ Seeks More Time on Tower Dumps
  • Your household smart products must respect your privacy – including your air fryer
  • Vermont signs Kids Code into law, faces legal challenges
  • Data Categories and Surveillance Pricing: Ferguson’s Nuanced Approach to Privacy Innovation
  • Anne Wojcicki Wins Bidding for 23andMe

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.