California Correctional Health Care Services, a provider of healthcare to adult inmates in the state, has reported a data breach after a laptop was stolen from an employee's car.
The unencrypted, password-protected laptop was stolen Feb. 25, and it may have contained protected health information and personally identifiable information of people incarcerated within the California Department of Corrections and Rehabilitation between 1996 and 2014, according to a statement from the CCHCS.
The department's data breach notice indicates they do not know if any sensitive information was stored on the laptop, or whose information may be on it. "If your information was included, the nature of the information may have included confidential medical, mental health and custodial information," according to the notice.
"CCHCS is committed to protecting the personal information of our patients," said Joyce
Hayhoe, director of communications and legislation of CCHCS, in the statement. "Appropriate actions were immediately implemented and shall continue to occur. This includes, but is not limited to, corrective discipline, information security training, procedural amendments, process changes and technology controls and safeguards. As necessary, policies, risk assessments and contracts shall be reviewed and updated."
More articles on data breaches:
HHS' OCR to develop guide on preparing for, responding to ransomware
Florida Medical Clinic notifies 1,000 patient of data breach after Greenway Health mistake
Healthcare breaches cost $2.2M: This and 7 more key findings on breaches in healthcare