South Bend, IN-based Beacon Health System (BHS) says the medical records of 3,117 patients have been accessed by an employee when there was no legitimate work reason for viewing the records. The unauthorized activity was detected on or around January 10, 2023, prompting an investigation to determine the extent of the privacy violation.
BHS said the employee’s work duties were related to patient registrations, verification of benefits, and patient placements within the hospital. As such, security privileges allowed access to clinical documentation in medical records, as access to clinical information was occasionally necessary. The investigation confirmed on February 20, 2023, that the medical record access was unrelated to the employee’s work duties, with the period of access spanning from November 18, 2018, to February 24, 2023.
The information accessed included names, addresses, birth dates, Social Security numbers, and clinical information such as diagnoses, emergency care treatment information, labs and diagnostic testing, operative and anesthesia documentation, ancillary clinical documentation and medical histories. BHS said notification letters are being sent to affected individuals and confirmed that the employee no longer works at BHS.
IAQ and Infection Mitigation in Aging Facilities
Preventing Pests: Effective Measures in Healthcare Facilities
CommuniCare Reports Data Security Incident
What Does Light Daily Cleaning Miss in Patient Rooms?
Smart Lighting Overhaul Boosts Efficiency, Diagnostics and Wellness at Bryan Health