Mishawaka, Ind.-based Select Health Network is notifying 3,582 patients about a data breach that may have exposed their personal health information.
Select Health discovered unusual activity in an employee's email account. Upon further investigation, the physician group determined that the employee's email account was accessed by an unauthorized third party between May 22 and June 13.
Patient data that may have been exposed included names, addresses, dates of birth, member identification numbers, treating/referring physicians, health insurance information, medical history information, treatment information, treatment cost information, health insurance policy numbers and medical record numbers. A limited number of Social Security numbers may have also been affected.
Select Health said there is no evidence that patient information has been misused.
"As part of our ongoing commitment to the privacy of personal information in our care, we are working to review our existing policies and procedures and to implement additional safeguards to further secure the information in our systems," Select Health said in a statement.