EHR snooping: 7,000+ Ohio wellness program people most likely victimized

An Ohio-primarily based wellness procedure began notifying sufferers this earlier week that a former personnel…

An Ohio-primarily based wellness procedure began notifying sufferers this earlier week that a former personnel may possibly have inappropriately accessed their non-public documents.  

Aultman Wellbeing Foundation, which is headquartered in Canton, Ohio, stated that the previous personnel could have snooped on patient facts for more than a ten years, in accordance to the Everyday Document.  

“Upon discovering this, the employee’s entry to Aultman’s digital overall health file process was suspended, and an investigation was executed to establish the mother nature and scope of the incident,” said enterprise associates.  

WHY IT Issues

As noted by the Everyday File, about 7,300 clients throughout Aultman’s health and fitness technique had their info included in the incident.  

Amongst September 14, 2009, and April 26, 2021, the personnel may well have accessed patients’ names, addresses, birthdays, Social Stability figures, insurance policy information and facts and prognosis and therapy information, claimed Aultman.  

The staff allegedly experienced obtain to affected person facts as aspect of their work coordinating client treatment. The data they accessed was outside the house the scope of their duties.

Even though they have not been identified and will not be facing prison expenses, the health and fitness technique did fire them.

Aultman reported there is no indicator client facts has been misused, but that it really is giving free credit checking and identity-theft protection to all those whose Social Security numbers may perhaps have been exposed.  

THE Bigger Trend  

Snooping may well not be as headline-grabbing as other stability threats, this kind of as ransomware, but it continue to offers a quite serious worry for well being units.  

In March 2020, a cybersecurity firm experienced warned that COVID-19 could current a heightened temptation for healthcare facility personnel to poke into affected individual data without the need of right justification to do so.

And before this 12 months, Montefiore – a well being technique in New York – claimed that an employee had inappropriately accessed affected person info involving June 2020 and November 2020.  

ON THE File  

“To enable protect against a thing like this from going on yet again, Aultman has delivered added education to its system people and is applying further measures to safeguard the info of its people,” said Aultman in a statement.

 

Kat Jercich is senior editor of Health care IT News.
Twitter: @kjercich
Electronic mail: [email protected]
Healthcare IT Information is a HIMSS Media publication.