Community Health Centers of Greater Dayton

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

The Community Health Centers of Greater Dayton (CHCGD) experienced a breach of the Health Insurance Portability and Accountability Act (HIPAA) when an unsecured email containing personal patient information was sent to one of their business associates. The email, which was sent on February 2, 2023, was intended for the correct recipient but was not sent in a secure manner, thus constituting a HIPAA violation[1][5].

The email contained personal information regarding 516 dental patients, including names, dates of birth, medical record numbers, appointment dates and times, and a brief description of the reason for the dental visit. The information pertained to the period between October 11, 2022, and December 15, 2022[1][5].

In response to the breach, CHCGD has taken steps to strengthen their safeguards and retrain their staff on the proper procedures for sending emails securely. They are also working with technical support to enhance their security measures. Affected patients are expected to receive a letter in their mailbox with information on how to protect themselves from potential harm resulting from the leak of their personal information[1][5].

The incident highlights the importance of secure communication methods when handling protected health information to prevent unauthorized access and ensure compliance with HIPAA regulations.

Citations:

  1. https://www.wdtn.com/news/local-news/dayton-medical-organization-subject-to-hipaa-breach/
  2. https://www.ibm.com/topics/data-breach
  3. https://hbr.org/2023/05/the-devastating-business-impacts-of-a-cyber-breach
  4. https://www.ekransystem.com/en/blog/data-breach-investigation-best-practices
  5. https://dayton247now.com/news/local/hipaa-breach-involving-patient-information-at-commmunity-health-centers-of-greater-dayton
  6. https://www.trendmicro.com/vinfo/us/security/definition/data-breach
  7. https://www.cloudmask.com/blog/data-breaches-threats-and-consequences
  8. https://www.hipaajournal.com/ransomware-attack-announced-by-codman-square-health-center/
  9. https://usa.kaspersky.com/resource-center/definitions/data-breach
  10. https://bigid.com/blog/the-costly-impact-of-a-data-breach-on-individuals/
  11. https://www.communityhealthdayton.org/news-archives.php
  12. https://www.fortinet.com/resources/cyberglossary/data-breach
  13. https://www.nedigital.com/en/blog/data-breach-consequences
  14. https://www.wdtn.com/as-seen-on-2-news/criminal-hacking-group-breaches-data-including-premier-health/
  15. https://www.ftc.gov/business-guidance/resources/data-breach-response-guide-business
  16. https://www.fisglobal.com/en/insights/merchant-solutions-worldpay/article/how-the-consequences-of-a-data-breach-threaten-small-businesses
  17. https://www.daytondailynews.com/news/local-hospitals-among-hundreds-with-multiple-privacy-complaints/ZwFqMJX5tLqziWCkVevOhO/
  18. https://www.forbes.com/advisor/business/what-is-data-breach/
  19. https://securityintelligence.com/articles/long-term-impacts-security-breach/
  20. https://www.wcpo.com/news/local-news/mercy-health-patients-among-giant-data-breach-affecting-8-9-million-people-company-says
  21. https://commission.europa.eu/law/law-topic/data-protection/reform/rules-business-and-organisations/obligations/what-data-breach-and-what-do-we-have-do-case-data-breach_en
  22. https://www.theamegroup.com/security-breach/
  23. https://www.idstrong.com/sentinel/112k-records-stolen-from-population-healthec/
  24. https://www.cloudflare.com/learning/security/what-is-a-data-breach/
  25. https://www.securitymagazine.com/articles/98325-the-impact-of-a-data-breach
Breach Submission Date Mar 08, 2023
Converted Entity Name Community Health Centers of Greater Dayton
Converted Entity Type Healthcare Provider
State OH
Individuals Affected 516
Breach Type Unauthorized Access/Disclosure

Breach Information Location Email

Business Associate Present Yes