Less than two weeks after issuing a similar statement in November, Texas-based eye care services provider Visionworks announced it is notifying approximately 48,000 customers who received services at its Mall of the Avenues location in Jacksonville, FL that a database server containing their personal information is missing.
How many victims? Approximately 48,000.
What type of personal information? Partially unencrypted protected health information and encrypted credit card information.
What happened? A database server containing the personal information went missing following a computer replacement upgrade.
What was the response? All potentially impacted individuals are being notified, and offered a free year of credit monitoring.
Details: The incident affected Visionworks customers who received services prior to Sept. 26 at the Mall of the Avenues location in Jacksonville, FL. An internal and external investigation has concluded – the location of the server is still undetermined, but was likely discarded by an employee.
Visionworks did not respond to a SCMagazine.com inquiry into whether this incident and the first incident are related.
Quote: “At this time, there is no reason to believe that any of the information residing on the server has been accessed or used inappropriately,” according to the notification posted to the Visionworks website.
Source: visionworks.com, “Statement on recent Visionworks privacy issue,” Nov. 21, 2014.
UPDATE: A Visionworks spokesperson told SCMagazine.com on Thursday that the first incident, which impacted customers in Maryland, is unrelated to this incident.