DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

TX: UMC Physicians Notifies Patients of Compromised Patient Data

Posted on May 10, 2019 by Dissent
Press Release:

UMC Physicians (UMCP) is educating employees on approved cloud storage solutions and notifying patients of an incident that may have compromised the privacy of protected health information held by their clinic: UMC Southwest Gastroenterology.

UMCP has no evidence of actual or attempted misuse of personal information at this time.

On March 12, 2019, UMCP discovered that two employed providers had each established a Google shared drive to track follow-up tasks related to patient care, such as: lab results, appointments, procedures, and therapies. One employee was forwarding emails to an unsecured Google Gmail account. UMCP immediately retrieved and/or deleted the affected files and simultaneously started an investigation to determine the scope of the information disclosed and to identify the affected patients.

Although the two providers intended to ensure good patient care by taking these actions, the security of patients’ protected health information (“PHI”) was compromised by storing it on an unsecured network. The PHI in some files included only a patient name and email address. However, some files contained some or all of the following: name, address, phone number, medical record number, date of birth, date of service, health insurance carrier, diagnosis, and/or procedure. No financial information, such as social security numbers, insurance policy numbers, or credit card information, was involved.

All employees are receiving education on approved cloud storage so that an incident like this one does not occur again. UMCP will implement other solutions to prevent the use of unapproved cloud storage solutions.

UMC and UMCP understand this incident may create worry and inconvenience for patients, and the health system sincerely apologizes and regrets that this incident has occurred.

Patients with questions or concerns can contact our toll free dedicated assistance line at 844.446.6445, Monday-Friday, 8AM – 5PM. Any calls after hours, on the weekend, or on a holiday will be returned the next business day.

Source: UMC Physicians

No related posts.

Category: ExposureHealth DataU.S.

Post navigation

← NY: Episcopal Health Services – Notice of Data Privacy Event
Independent Health mistakenly emailed information on 7,600 members →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Integrated Oncology Network victim of phishing attack; multiple locations affected (2)
  • HHS’ Office for Civil Rights Settles HIPAA Privacy and Security Rule Investigation with Deer Oaks Behavioral Health for $225k and a Corrective Action Plan
  • HB1127 Explained: North Dakota’s New InfoSec Requirements for Financial Corporations
  • Credit reports among personal data of 190,000 breached, put for sale on Dark Web; IT vendor fined
  • Five youths arrested on suspicion of phishing
  • Russia Jailed Hacker Who Worked for Ukrainian Intelligence to Launch Cyberattacks on Critical Infrastructure
  • Kentfield Hospital victim of cyberattack by World Leaks, patient data involved
  • India’s Max Financial says hacker accessed customer data from its insurance unit
  • Brazil’s central bank service provider hacked, $140M stolen
  • Iranian and Pro-Regime Cyberattacks Against Americans (2011-Present)

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • On July 7, Gemini AI will access your WhatsApp and more. Learn how to disable it on Android.
  • German court awards Facebook user €5,000 for data protection violations
  • Record-Breaking $1.55M CCPA Settlement Against Health Information Website Publisher
  • Ninth Circuit Reviews Website Tracking Class Actions and the Reach of California’s Privacy Law
  • US healthcare offshoring: Navigating patient data privacy laws and regulations
  • Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
  • Google Trackers: What You Can Actually Escape And What You Can’t

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.