:quality(70)/arc-anglerfish-arc2-prod-cmg.s3.amazonaws.com/public/Y2FW5TNQ5NYQZNWA6WLLTBHP44.jpg)
The Washington State Health Care Authority (HCA) discovered that the personal identification information and private health information of more than 91,000 Apple Health (Medicaid) clients was handled improperly by a HCA employee.
HCA is sending a notification letter to clients on Tuesday affected by the breach.
The information includes clients’ Social Security numbers, dates of birth, Apple Health client ID numbers and private health information.
According to the press release, an Apple Health employee needed help with spreadsheets that contained patient information. That person sent the data to another employee which was in violation of federal patient privacy laws. The breach was discovered in the course of a whistleblower investigation into misuse of state resources. Both employees were fired.
“While we have no indication that the client files went beyond the two individuals involved. Important privacy laws were violated and we are exercising caution and due diligence given the nature of the information,” Dotson said.
Here are some steps to take if you've been impacted via Jesse Jones.
Because the investigation could not confirm that the data stayed within the state’s systems, it was determined there was a breach of protected data, requiring client notification.
Both individuals’ employment has been terminated.
Upon discovering the breach, HCA says it:
- Conducted an internal investigation that included securing and searching the employee’s computer to understand what information was exchanged.
- Partnered with the state agency whose employee was the recipient of the information to further understand what information was exchanged and to ensure HCA information was secure.
- Worked to identify files containing private information and notify impacted clients.
- Set up one year of free credit monitoring for impacted clients, a toll-free number and a web page for impacted Apple Health clients.
Cox Media Group
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/cmg/O2XYYTZMDRCDVG7FRQMTL2QSO4.jpg)
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/cmg/VJGHDQCCXFBE5NWSC5QPZ2YDWA.jpg)
:quality(70)/d1hfln2sfez66z.cloudfront.net/04-25-2024/t_890b024e4146412fba10831bc7dfacf2_name_5as__Tesla_Autopilot_Ax_transfer_frame_0.jpeg)
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/cmg/R6RG2PCB2ZHJ3L3E6UDSUL2Z5U.jpeg)
:quality(70)/cloudfront-us-east-1.images.arcpublishing.com/cmg/WRE45HXGLFA53BMDVGZXFP2VTA.jpg)