Administrative error exposes personal data of 10,200 neurology patients

Share this article:

A New York State medical practice mistakenly emailed the personal information of several thousand patients to other individuals it was treating.

How many victims? 10,200.

What type of personal information? Names, email and home addresses, appointment dates, and the names of doctors treating individuals.  

What happened? While sending a routine email to 200 patients on Monday, a clerk at Amherst, N.Y.-based Dent Neurologic Institute (DNI) mistakenly attached an Excel spreadsheet containing the sensitive information.

What was the response? The facility said it had contacted all 200 of the emailed patients by Tuesday afternoon, requesting that they delete the email.

DNI notified the New York Department of Health about the incident and said it would send notification letters, including an apology, to victims. The practice also provided a number for patients to call with questions.

Details: According to DNI, no Social Security numbers, birth dates or specific information about patients' medical conditions were included in the email attachment.

Quote: “Patient confidentiality is extremely important in our field, and we take it very seriously, and we will review how this accident happened so we can take steps to minimize the possibilities it could ever happen again,” said Dent CEO Joseph Fritz. “This is an inexcusable event.”

Source: www.buffalonews.com, The Buffalo News, Mass email by Dent Neurologic inadvertently breaches privacy of 10,200 patients,” May 14, 2013.

Share this article:
You must be a registered member of SC Magazine to post a comment.
close

Next Article in The Data Breach Blog

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US

More in The Data Breach Blog

Sourcebooks payment card breach impacts more than 5,000 customers

More than 5,000 customers had personal information stolen, but roughly 9,000 notification letters were sent out as a precautionary measure.

Cyberswim notifies customers that payment card data may be at risk

Malicious software installed on Sept. 24 may have compromised personal information for visitors that made purchases between May 12 and Aug. 28.

Marquette University notifies graduate applicants of possible breach

Settings for an internal file server were inadvertently modified, making graduate school applications accessible to anyone with Marquette University login credentials.