Danville, Pa.-based Geisinger Health Plan is notifying members of a data breach after a processing error resulted in invoices being mailed to incorrect recipients.
The processing error occurred July 30, and the health plan became aware of it Aug. 4. The data breach affects approximately 2,800 members from 220 employers.
Information contained in the invoices includes members' names, birth dates, health insurance premium information, member identification number and smoking status. No medical treatment or financial information was included in the statements.
"We have contacted both the affected members and businesses regarding the processing error and the possibility of a disclosure," said John Gildersleeve, Geisinger privacy officer. "In addition, we have requested that the invoices be returned so they can be properly destroyed in compliance with Geisinger Health System policies and procedures."
More articles on data breaches:
The role all executives play in cybersecurity
Asante reports internal data breach
The Department of Education is 'the biggest vulnerability' for a hack