Subscriber Benefit
As a subscriber you can listen to articles at work, in the car, or while you work out. Subscribe NowCommunity Health Network is notifying an undisclosed number of patients that some of their personal and medical information may be part of a data breach.
The health network said Friday that information from users of its web site and its My Chart patient portal might have been transmitted though cookies and pixels to website-tracking technology vendors such as Facebook and Google.
Community, which said it discovered the issue on Sept. 22, said the leaked information could vary, depending on the user and their device configurations, but might include:
- computer IP address;
- dates, times, and/or locations of scheduled appointments;
- health care provider information;
- types of appointment or procedure scheduled;
- communications that occurred through MyChart, including first and last names and medical record numbers; information about insurance coverage; and the name of any MyChart account proxy.
Community said their was “no indication that any Social Security numbers, financial account numbers, or debit/credit card information was collected or transmitted through the third-party tracking technologies.”
A Community spokeswoman declined to say how many patients might be affected by the breach.
“Community regrets that this data breach occurred and is committed to safeguarding individuals’ information,” it said in a statement. “Community is mailing letters to potentially impacted individuals with information about the data breach, actions Community has taken, and recommendations on steps that individuals can take to protect themselves from website tracking.”
Patients can also get information about the breach by calling (866) 361-5593 between 9 a.m. and 7 p.m. Monday through Friday.
Please enable JavaScript to view this content.
Ain’t these online medical portals just great.
Normally a breach means an attack, but this sounds more like grossly negligent software design, or maybe even intentionally selling the data.
Data breaches don’t just “occur” like they’re implying. They’re not accidents. They’re not inevitable.
I love how they will share info with patients on how we can avoid third party tracker software. I guess the problem is mine! Also they knew of this in September and just disclosed it?????? Let the class action begin!!!! Is there a law firm representing the patients yet?
I have always had problems with their network. And their IT folk always admitted it was a screwed up system.