“Although Vidant Health believes it was appropriate to include your name, service dates, account balance and redacted account number in this filing, we additionally included your Social Security number, full account number, medical record number, date of birth, telephone number, sex and marital status,” the letter reads. “Vidant Health has filed a motion to restrict public access to its previous submission.”
The system has implemented free identity protection services for a year for all affected patients in addition to updating policies and re-training staff, according to the letter.
In February, Vidant notified employees of an outsider without authorization accessing their personal information at Vidant Duplin Hospital in Kenansville, N.C.
More articles on health IT:
Vidant Health employees victims of outsider breach
18 latest data breaches
Ransomware a ‘legal ambiguity,’ not quite a data breach
