DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

NYU Langone notified 1,123 patients of privacy issue due to mailing vendor error

Posted on January 21, 2022 by Dissent

NYU Langone Health notified patients the week of January 4, 2022, about a potential privacy incident resulting in misdirected, limited patient information. The incident occurred on or about November 12, 2021, when a communication was sent via U.S. mail to inform patients of a planned relocation of an NYU Langone Health oncology surgeon originally based in Lake Success, New York.

Upon investigation, it was discovered that the third-party vendor NYU Langone used to complete this mailing reformatted the address list, which resulted in a misalignment of patient names and addresses on the envelope. As a result, individual patient communications were sent to incorrect addresses. Importantly, the communication itself was a generic “Dear Patient” letter and did not include any patient information pertaining to the intended recipient. Additionally, no other personal or health information, such as treatment information or social security number, was included.

NYU Langone is currently mailing letters to alert those affected by this incident and has established a dedicated toll-free call center at 800-939-4170, to answer any questions patients may have with representatives available Monday through Friday from 9:00AM to 9:00PM Eastern Standard Time.

Following this incident, NYU Langone requested and received assurances from the vendor that they have reviewed their practices and will implement any necessary changes to protect from similar misdirected mailings of patient information in the future. NYU Langone will also continue to review its own internal processes and procedures to help prevent such incident as this from happening again.

Source: NYU Langone Health

The incident was reported to HHS on January 6 as involving 1,123 patients.

Related posts:

  • NYU Langone Health Notifies Patients of Improperly Disposed Binder Containing Patient Information
  • NYU Langone Medical Center notifies 8,400 neurosurgery patients that stolen computer may contain patient health info
  • Pediatric Urology Associates was allegedly locked and hacked. What are they doing about it?
  • NYU Langone Medical Center Notifies Patients That Stolen Computer Contained Clinical Information
Category: ExposureHealth DataPaperU.S.

Post navigation

← GA: Peachtree Orthopaedic Clinic reports breach to HHS
New Loop: Data Breach to Lawsuit →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.