HealthEquity, a health savings trustee, discovered one of its employee's email accounts containing individuals' protected health information had been compromised due to a human error, according to HealthEquity's notice posted on Click On Detroit.
The incident occurred April 11 but wasn't discovered until April 13, at which point HealthEquity immediately cut off the unauthorized access and launched an investigation. HealthEquity has notified all potentially affected individuals of the incident.
The email account contained individuals' names, emails, HealthEquity member IDs, employer names, HealthEquity employer IDs, healthcare account type, deduction amounts and Social Security numbers for several employees at two Michigan-based companies.
Although HealthEquity hasn't found any evidence the information has been misused, it is offering affected individuals identity theft and credit monitoring services.
More articles on payer issues:
UnitedHealth's next purchase? The insurance unit of a Swiss hearing aid maker
Maryland: The first state CMS will hold fully at risk for total healthcare costs
Can blockchain improve provider directories? 5 insights from Humana, EY Advisory