The University of Arkansas for Medical Sciences (UAMS), a large academic medical center, recently announced a data breach that affected approximately 1,500 patients. UAMS says a former physician, who was fired in 2010, kept patient lists and notes after leaving the hospital in June of that year.
The patient data included names, partial addresses, medical record numbers, dates of birth, ages, locations of care, dates of service, diagnoses, medications, surgical and other procedure names, and lab results. The academic medical center says there were no social security numbers, bank accounts, or credit card numbers included with this information.
The hospital says it became aware of this incident in October when the resident produced the documents during a wrongful termination lawsuit against UAMS regarding. The documents are protected by a court order, which means they won’t be further disclosed.