The patient data of about 1,800 UnityPoint Health customers was accessed during a data breach.
The company says it noticed the breach during an audit in August. It found an employee of a third-party, who did not have authorization, gained access to its electronic medical record system by using the passwords of authorized users.
The unauthorized access happened between February 2013 and August 2013.
After the breach was discovered passwords were reset, cutting off the unauthorized access.
The information that was accessed included names, addresses, dates of birth, medical insurance account numbers, and health information. For about 10-percent of the affected customers, information like Social Security numbers and driver’s license numbers may have been viewed.
UnityPoint communications director Laura Sinnard reassured, “We take the security of our patients very seriously and we regret that this happened.”
The affected patients have been notified by UnityPoint Health and are being offered credit monitoring. You can request more information from Unity Point by calling (877) 223-3817.
UnityPoint Health reported the data breach to law enforcement and they are investigating.