In 2013, two laptops were stolen from Horizon BCBS’ Newark, N.J.-based headquarters. The unencrypted information on the laptops included patients’ names, addresses, dates of birth, insurance identification numbers, some Social Security numbers and some medical information.
Steve Lee, director of the New Jersey Division of Consumer Affairs, said the patient information on the laptops was only protected with a password. “This settlement ensures that Horizon BCBSNJ will maintain appropriate data privacy and security protocols to prevent future data breaches,” Mr. Lee said, according to the report.
Horizon spokesperson Tom Vincz said there’s been no evidence the stolen information has been used. “While it is reassuring that not a single confirmed incident of identity theft is traceable to the two stolen laptops, Horizon remains vigilant in protecting our members’ privacy through consistent attention to and significant investment in our physical and cybersecurity practices,” he said, according to the report.
More articles on health IT:
50 things to know about athenahealth, Cerner, Epic, McKesson & Meditech
3 EHR vendors join Surescripts’ National Record Locator Service
Opinion: You should donate your medical data when you die
