Skip to content Skip to navigation

University of Connecticut Health Center Privacy Breach Affects 1,400 Patients

March 11, 2013
by Rajiv Leventhal
| Reprints

The University of Connecticut Health Center has acknowledged that a former employee inappropriately accessed records of approximately 1,400 patients, which included names, addresses, dates of birth, and in some cases, Social Security numbers. The Health Center became aware of the privacy breach on January 7, 2013.

According to the Hartford Courant, UConn spokesman Chris DeFrancesco said there's nothing to suggest that any of the information was downloaded, printed or copied or used by the employee. DeFrancesco said the employee, a woman who worked at the center for 11 years, resigned in December after an internal investigation. The investigation, started in October, found that the privacy breaches dated back to June 2010.

All Health Center employees are required to undergo training about patient privacy upon employment, and education is reinforced with ongoing training. The Health Center is currently evaluating all education and monitoring efforts to ensure ongoing compliance.

“We sincerely regret the inconvenience and concern this may cause our patients,” Iris Mauriello, the Health Center’s privacy officer, said in a statement. “The actions of one person do not define the integrity of our entire workforce and all of our collective efforts to ensure the privacy of health records. Our patients rely on each of us to ensure safe and responsible use of the information with which we have been entrusted. We take that very seriously,” she added.

Starting on March 8, 2013, all patients who were the subjects of the privacy breach will receive instructions on protecting themselves against potential identity theft. The Health Center is also offering the patients, a free, two-year subscription to a credit monitoring service along with insurance coverage to assist with any possible identity theft related to the breach.



ONC National Coordinator Gets Live Look at Carequality Data Exchange

Officials from Carequality have stated that there are now more than 150,000 clinicians across 11,000 clinics and 500 hospitals live on its network. These participants are also able to share health data records with one another, regardless of technology vendor.

American Red Cross, Teladoc to Provide Telehealth Services to Disaster Victims

The American Red Cross announced a partnership with Teladoc to deliver remote medical care to communities in the United States that are significantly affected by disasters.

Report: The Business of Cybercrime in Healthcare is Growing

While stolen financial data still has a higher market value than stolen medical records, as financial data can be monetized faster, there are indications that there is ongoing development of a market for stolen medical data, according to an Intel Security McAfee Labs report.

Phishing Attack at Baystate Health Potentially Exposes Data of 13K Patients

A phishing scam at Baystate Health in Springfield, Mass. has potentially exposed the personal data of 13,000 patients, according to a privacy statement from the patient care organization and a report from MassLive.

New Use Cases Driving Growth in Health Data Exchange through Direct

In an update, DirectTrust reported significant growth in Direct exchange of health information and the number of trusted Direct addressed enabled to share personal health information (PHI) in the third quarter of 2016.

Insurers to CBO: Consider Private Insurers’ Data in Evaluations of Telemedicine

Eleven private insurers, including Aetna, Humana and Anthem, are urging the Congressional Budget Office (CBO) to consider the experience of commercial insurers when evaluating the impact of telemedicine coverage in Medicare.