LifeWatch Corp., a company specializing in ambulatory health monitoring, has notified (pdf) the New Hampshire Attorney General’s Office that due to a configuration error, some patient files were available on public areas of their web site for about three weeks last month. Personal information in the exposed files included the patients’ names, dates of birth, diagnoses, some health monitoring reports, and in some cases, Social Security numbers.
By letter dated March 19, the company apologized and offered those affected 24 months of free services through Triple Alert.