BioTel Heart began informing 38,575 patients that a vendor data breach may have left their personal information exposed for nearly a year.
In a data breach notice, BioTel Heart said that on Jan. 28, the healthcare provider was informed about the data breach. It launched an investigation and learned that patients' personal information was accessible to the public between Oct. 17, 2019, and Aug. 9, 2020.
On Aug. 9, the vendor was able to secure the information it was holding on BioTel Heart's behalf, after which BioTel Heart terminated the business arrangement it had with the vendor.
Breached information may include Social Security numbers, medical records, contact information and more.
There is no evidence of misuse of breached information at this time, nor is there evidence that breached data was stored on BioTel Heart's own network, the notice said.
In response to the data breach, BioTel Heart is offering free two-year memberships to Equifax's credit monitoring service.