September 9, 2011

Stanford Hospital privacy breach puts data online

(AP) -- Stanford Hospital in California is blaming a subcontractor used by an outside vendor for a privacy breach that led to the posting online of medical information for thousands of emergency room patients.

The breach was first reported Friday by the New York Times ( http://nyti.ms/p84zWa ). The data of 20,000 patients, including names and diagnosis codes, remained on a commercial website for nearly a year until it was discovered last month and taken down, according to the newspaper.

In a statement, Stanford Hospital said the file that contained the patient information and was posted to the site was created by a subcontractor employed by one of its vendors, Multi Specialties Collection Services.

The hospital did not name the subcontractor, but it said Multi Specialties Collection Services is investigating how the company caused to be posted to the website. Stanford said in the meantime, it has suspended working with Multi Specialties Collection Services.

"This incident was not caused by the hospital, and responsibility has been assumed by a contractor working with the vendor," the hospital said in its statement.

The information posted to the website also contained numbers, hospital , emergency room admission and discharge dates and billing charges, according to the hospital. It did not contain credit card or , information commonly associated with identity theft.

The affected patients were seen by the hospital's between March 1, 2009, and Aug. 31, 2009.

"The hospital notified affected patients quickly and also arranged for free identity protection services, though the data involved in not associated with identity theft," the statement reads.

The website where the file was posted allows students to pay for help with their school work, according to the New York Times.

Gary Migdol, a spokesman for the hospital, told the newspaper that he expected the federal Department of Health and Human Services to conduct its own investigation. Susan McAndrew, a deputy director in the department's Office for Civil Rights, said she could not discuss whether an investigation was in progress.

©2011 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

Citation: Stanford Hospital privacy breach puts data online (2011, September 9) retrieved 3 July 2024 from https://medicalxpress.com/news/2011-09-stanford-hospital-privacy-breach-online.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.

Explore further

Citigroup says 360,000 affected by hackers
 shares

Feedback to editors
Team develops AI model to improve patient response to cancer therapy

23 minutes ago
New cancer treatment slows progression of aggressive neuroendocrine tumors, study finds

12 hours ago
Why schizophrenia and apathy go hand in hand

14 hours ago
Study: Women veterans at higher risk for repeat suicide attempts

14 hours ago
Childhood obesity tied to double the risk of dengue hospitalization

15 hours ago
Financial incentives found to double smoking cessation rate for people with socioeconomic challenges

16 hours ago
Study discovers connection between between heart and brain in KBG syndrome

16 hours ago
Clinical trial could lead to new 'gold standard' test for prostate cancer detection

16 hours ago
Serendipity reveals new method to fight cancer with T cells

17 hours ago
The path to Parkinson's disease: All roads lead to the nigrosome

17 hours ago
Load comments (0)