How many victims? 21,000.
What type of personal information? Names, birth dates, insurance information and Social Security numbers.
What happened? The laptop was stolen from an office in the hospital on June 14.
A hospital employee violated policy by copying data from the hospital's computer system to a laptop. The employee will be subject to unspecified disciplinary action.
Details: The laptop was password-protected, but the data was not encrypted.
Quote: “As upsetting as it is for me, I know it is even more upsetting for the people who have gone through it and I am really sorry that they have to deal with this,” said Thomas Lewis, Jefferson's president and chief executive.
What was the response? Jefferson has notified affected individuals and offered to provide them with identity theft protection services. Risk consultancy firm Kroll was brought in to conduct an investigation into the incident. Also, an internal review of hospital policies and procedures was carried out to ensure a similar incident does not occur in the future.
Source: Philly.com, “Huge loss of patient data at Jefferson,” July 29, 2010.
