Lab testing company Clinical Pathology Laboratories began notifying 2.2 million patients July 5 that their personal health information may have been exposed in a vendor data breach, according to SC Magazine.
The American Medical Collection Agency alerted CPL in May that some customers' information may have been affected in a massive data breach. The information affected included names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information.
AMCA, which serves as a third-party billing and collections vendor for CPL, learned of the data breach in March. The company said no Social Security numbers, lab results or clinical histories were affected.
"At the time of AMCA's initial notification, AMCA did not provide CPL with enough information for CPL to identify potentially affected patients or confirm the nature of patient information potentially involved in the incident, and CPL's investigation is ongoing," said a statement on CPL's website.
Other lab testing companies, including Quest Diagnostics and LabCorp, were also affected by the AMCA data breach.