[Dataloss] GA: Private medical data exposed

lyger lyger at attrition.org
Tue Jul 29 11:39:16 UTC 2008


http://www.ajc.com/news/content/news/stories/2008/07/29/bluecross.html?cxntnid=amn072908e

Georgia's largest health insurer sent an estimated 202,000 benefits 
letters containing personal and health information to the wrong addresses 
last week, in a privacy breach that also raised concerns about potential 
identity theft.

Blue Cross and Blue Shield of Georgia said Monday that the erroneous 
mailings were primarily Explanation of Benefits (EOB) letters, which 
include the patient's name and ID number, the name of the medical provider 
delivering the service, and the amounts charged and owed.

"A small percentage" of letters also contained the patient's Social 
Security numbers, said Cindy Sanders, a Blue Cross spokeswoman. The EOB 
forms were mailed to the addresses of other Blue Cross policyholders.

[...]


More information about the Dataloss mailing list