Indianapolis-based health insurer WellPoint will pay the state of Indiana $100,000 to settle a case involving a data breach where the records of more than 32,000 people in Indiana were potentially accessible over the Internet, according to a state news release.
Applications for individual insurance policies were potentially accessible on an unsecured website from Oct. 23, 2009 to March 8, 2010. Consumers were notified of the data breach on June 18, 2010, but WellPoint did not notify the state attorney general's office "without unreasonable delay," per state law.
After Attorney General Greg Zoeller filed suit against WellPoint, WellPoint agreed to pay the settlement of $100,000 that will go toward a state fund to help consumers who were defrauded and provide assistance in fraud investigations; provide up to two years of credit monitoring and identity-theft protection for affected consumers; reimburse any WellPoint consumer up to $50,000 for any losses resulting from identify theft due to the breach; and other stipulations.
Read the Indiana attorney general's news release on the WellPoint data breach.
Related Articles on Data Breaches:
Missing Laptop at Michigan Hospital Contained Information of Nearly 2K Patients
Alabama's Troy Regional Medical Center Reports Data Theft
3 Strategies for Securing Health Data
Applications for individual insurance policies were potentially accessible on an unsecured website from Oct. 23, 2009 to March 8, 2010. Consumers were notified of the data breach on June 18, 2010, but WellPoint did not notify the state attorney general's office "without unreasonable delay," per state law.
After Attorney General Greg Zoeller filed suit against WellPoint, WellPoint agreed to pay the settlement of $100,000 that will go toward a state fund to help consumers who were defrauded and provide assistance in fraud investigations; provide up to two years of credit monitoring and identity-theft protection for affected consumers; reimburse any WellPoint consumer up to $50,000 for any losses resulting from identify theft due to the breach; and other stipulations.
Read the Indiana attorney general's news release on the WellPoint data breach.
Related Articles on Data Breaches:
Missing Laptop at Michigan Hospital Contained Information of Nearly 2K Patients
Alabama's Troy Regional Medical Center Reports Data Theft
3 Strategies for Securing Health Data