Rhode Island’s Lifespan Informs 20k Patients of Data Breach | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Rhode Island’s Lifespan Informs 20k Patients of Data Breach

April 24, 2017
by Rajiv Leventhal
| Reprints

Providence, R.I.-based Lifespan, the state’s first health system, is notifying patients about a theft of an employee’s laptop that may have contained sensitive patient information.

In February, several items were stolen from the employee’s car, including a MacBook laptop used by the employee for work purposes. Upon discovering the theft, the employee immediately contacted law enforcement and reported the incident to Lifespan. Lifespan then began an investigation and changed the employee’s credentials used to access Lifespan system resources out of an abundance of caution, the organization said in a statement.

The Providence Journal has reported that the healthcare organization “has notified about 20,000 patients of the theft of an employee’s laptop containing patient information.”

An investigation determined that the MacBook was unencrypted and not password protected, and the employee’s work emails stored on the MacBook were potentially accessible. It was also determined that the emails may have contained patient information, including name, medical record number, demographic information such as partial address information, and the names of one or more medications that were prescribed or administered at Lifespan. The information contained in the emails did not include patient Social Security numbers or financial information, nor did it include clinical information such as diagnosis. No medical records were stored on the MacBook, according to the provider.

Lifespan began mailing letters to affected individuals on April 21 and has established a call center to answer any questions. The organization said in a statement, “In order to help prevent a similar incident from reoccurring, we are re-educating our employees and enhancing our policies and procedures related to the security of MacBooks.”

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More



Survey: Infrastructure, Interoperability Key Barriers to Global HIT Development

A new survey report from Black Book Research on global healthcare IT adoption and records systems connectivity finds nations in various phases of regional electronic health record (EHR) adoption. The survey results also reveal rapidly advancing opportunities for U.S.-based and local technology vendors.

Penn Medicine Opens Up Telehealth Hub

Philadelphia-based Penn Medicine has opened its Center for Connected Care to centralize the health system’s telemedicine activities.

Roche to Pay $1.9B for Flatiron Health

Switzerland-based pharmaceutical company Roche has agreed to pay $1.9 billion to buy New York-based Flatiron Health Inc., which has both an oncology EHR and data analytics platform.

Financial Exec Survey: Interoperability Key Obstacle to Value-Based Payment Models

Momentum continues to grow for value-based care as nearly three-quarters of healthcare executives report their organizations have achieved positive financial results from value-based payment programs, to date, according to a new study from the Healthcare Financial Management Association (HFMA).

Cerner, Children's National to Help UAE Pediatric Center with Health IT

Al Jalila Children's Specialty Hospital, the only pediatric hospital in the United Arab Emirates, has entered into an agreement with Washington, D.C.-based Children's National Health System to form a health IT strategic partnership.

Telemedicine Association Names New CEO

The American Telemedicine Association (ATA) has named Ann Mond Johnson its new CEO, replacing Jon Linkous who stepped down suddenly last August after 24 years as the organization’s CEO.