UAMS investigating breach of patient information

— The University of Arkansas for Medical Sciences is investigating a breach of patient information after a document wasn't properly redacted.

According to a release from UAMS, the investigation began after an unidentified physician sent financial information on a patient to someone outside the UAMS offices in mid-February. The physician failed to remove all identifiers of the patients, such as names, account numbers and dates of service, among others. Bank card, credit card or bank account numbers were not included in the released information.

Of the 7,000 patients affected by the breach were those in the interventional radiology program anytime between 2009-2011.

Officials in the UAMS Health Insurance Portability and Accountability Act office contacted the person who received the data and were told he had not released any of it to anyone else. The data was transmitted to him through email, something the office considers a moderate risk.

Those interested in more information or who have been affected by this case can call (877) 615-3745 with any questions or concerns. Letters have been mailed to the affected individuals, according to the release.

“UAMS takes patient privacy and security seriously, and when we discovered this mistake, we did everything we could to mitigate the risk and prevent similar incidents from happening,” Vera Chenault, UAMS privacy officer, said in a statement. “We want patients to know what steps to take to protect themselves in the event that their information might have been included.”

Upcoming Events