Eyefinity, Inc.

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

Eyefinity, Inc., a business associate based in California, experienced a breach involving unauthorized access/disclosure that affected 1,353 individuals. The breach was reported on December 14, 2023, and involved a network server[1]. Eyefinity is a company that provides software and services to the eyecare industry, including electronic health records (EHR) and practice management solutions[2][9].

The U.S. Department of Health and Human Services Office for Civil Rights Breach Portal provides a notice of this breach, which indicates that the incident was related to unauthorized access or disclosure rather than a hacking or IT incident[1]. Eyefinity’s legal documents, such as their Notice of Privacy Practices and Certified API Terms of Use, emphasize the importance of safeguarding credentials and notify users of their responsibilities in case of unauthorized use or security breaches[2][4].

While the specific details of the breach, such as how the unauthorized access occurred or what information was disclosed, are not provided in the search results, Eyefinity is required to comply with HIPAA regulations, which include notifying affected individuals and taking steps to prevent future breaches[4].

For those affected by the breach or concerned about their data privacy, Eyefinity’s contact information for privacy-related inquiries is provided on their website[4]. Additionally, individuals who believe their privacy rights have been violated can file a complaint with Eyefinity or the U.S. Secretary of Health and Human Services[4].

Citations:

  1. https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf?adobe_mc=MCMID%3D02408406485458979789220680779370557994%7CMCORGID%3DA8833BC75245AF9E0A490D4D%2540AdobeOrg%7CTS%3D1696377600
  2. https://www.eyefinity.com/dam/jcr:0d0281d2-88a0-47e7-b5fc-d9f5842830be/Eyefinity_certified_API_terms.pdf
  3. https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf?ref=blog.gitguardian.com
  4. https://www.eyefinity.com/legal/notice-of-privacy-practices.html
  5. https://www.itgovernance.co.uk/blog/the-week-in-cyber-security-and-data-privacy-1-7-january-2024
  6. https://www.businesswire.com/news/home/20221114005682/en/Global-Ambulatory-EHR-Market-Report-2022-Need-to-Curtail-Healthcare-Costs-Coupled-with-Government-Initiatives-Drives-Growth—ResearchAndMarkets.com
  7. https://news.bloomberglaw.com/litigation/vsp-call-center-workers-denied-preliminary-approval-of-wage-deal
  8. https://colevannote.com/investigations/
  9. https://www.eyefinity.com/dam/eyefinity2022/documents/EW/ExamWRITER80.pdf
  10. https://www.aoa.org/AOA/Documents/Advocacy/state/C.D.%20Cal.%2023-cv-01805%20dckt%20000001_000%20filed%202023-09-26.pdf
  11. https://www.govinfo.gov/content/pkg/USCOURTS-caed-2_20-cv-02400/pdf/USCOURTS-caed-2_20-cv-02400-5.pdf
  12. http://www.eyefinity.com/dam/eyefinity/library/OM_TC.pdf
  13. https://breachdata.topwords.me/hipaa?limit=20&offset=120&sort=breach_type
  14. https://www.eyefinity.com/dam/jcr:77464099-5073-430f-adb4-d161c49077cb/Eyefinity_Supplemental_License_Terms.pdf
Breach Submission Date Dec 14, 2023
Converted Entity Name Eyefinity, Inc.
Converted Entity Type Business Associate
State CA
Individuals Affected 1,353
Breach Type Unauthorized Access/Disclosure

Breach Information Location Network Server

Business Associate Present Yes