August 31, 2016 VIA AND OVERNIGHT MAIL

Similar documents
August 12, 2016 VIA AND OVERNIGHT MAIL

BakerHostetler APR April 26, 2016 VIA OVERNIGHT DELIVERY

May 11, Via Office of the Attorney General 1125 Washington Street SE P.O. Box Olympia, WA

We are writing to notify you of an incident on behalf of our client, Title Nine Sports, Inc. ( Title Nine ).

September 29, 2017 VIA AND OVERNIGHT MAIL

3. Steps you have taken or plan to take relating to the incident.

9NFP. Return Mail Processing Center PO Box 6336 Portland, OR

L EW) S BRISBOIS BISGAARD. & SMITH LLP Fax: ATTORNEYS AT Law www, lewisbrisbols.com

August 18, Re: Security Incident Notice. Dear Attorney General Ferguson:

Nature of the Data Security Incident ALBUQUERQUE ATLANTA BEAUMONT BOSTON CHARLESTON CHICAGO DALLAS DENVER FORT LAUDERDALE HOUSTON LAQUINTA

Kris Kleiner Via to: March 2, 2018

Notice to Patients and Job Applicants Regarding Vendor Security Incident

McDonald Hop kins. January 23, Office of Washington Attorney General Consumer Protection Division 800 5th Ave, Suite 2000 Seattle, WA

May 15, VIA

James E. Prendergast 1275 Drummers Lane, Suite 302 Office: Wayne, PA Fax:

RE \\I. NO'V o s 2ms. CONSUMER PROlECl\ON

July 6, Data Security Incident. Dear Assistant Attorney General Ferguson:

MICHIGAN STATE UNIVERSITY

Paul T. McGurkin, Jr Drummers Lane, Suite 302 Office: Wayne, PA Fax:

fiu.n1 OI j& WllJ JAMS

Sian M. Schafle 1275 Drummers Lane, Suite 302 Office: Wayne, PA Fax:

October 30, 2017 File No VIA ELECTRONIC SUBMISSION

Citrus Valley Health Partners notifies patients of data security incident

ATG MI ADM Security Breach

Nature of the Data Event

April 27, Dear John Sample:

Noble House Hotels & Resorts Notifies Guests of Payment Card Security Incident

Edward J. Finn 1275 Drummers Lane, Suite 302 Office: Wayne, PA Fax:

NOTICE OF DATA BREACH

July 21, Data Security Incident. Dear Attorney General Ferguson:

Huwro N&: \VIIJ.1.A}vi TEL April 18, 2016 FILENO

~41ILIJ1\}dS NEW YORK, NY

945 East Paces Ferry Rd., Suite 1475, Atlanta, GA aptos.com

Katten. July 14, Via Electronic Mail Only

Here is some more information on the Equifax Breach and how you may protect yourself in the aftermath...

Equifax Phone: Address: Office of Fraud Assistance P.O. Box Atlanta, GA Internet:

How to Freeze Your Credit Files Tips for Consumers

Identity theft can occur even if you have been careful about protecting your personal information.

Office of Privacy Protection Safeguarding Information for Your Future

Resources for Victims of IDENTITY THEFT. HENNEPIN COUNTY CHIEFS OF POLICE and HENNEPIN COUNTY ATTORNEY S OFFICE

Instructions for Completing the ID Theft Affidavit

Take Charge: Fighting Back Against Identity Theft 37

Placing a Security Freeze on Your Credit Report

Identity Theft Packet

IDENTITY THEFT PACKET

Instructions for Completing the ID Theft Affidavit

CLAIM FORM (PRE-CLAIMS DEADLINE) GENERAL INSTRUCTIONS SETTLEMENT OVERVIEW

Notification of Rights for Texas Consumers

! Required " Optional " Alterations Acceptable

HOW TO USE CREDIT. Latino Community Credit Union & the Latino Community Development Center.

Product User Guide It s Your Credit. Keep It That Way with 5LINX Safe Score.

Identity Theft What to do if your identity is stolen

When Your Child s Identity Is Stolen

How to Freeze Your Credit Files

Identity Theft Victim s Packet

Identity Theft Victim s Packet

The Attorney General s Office established the Identity Theft Unit in response to increased identity theft incidents reported by Indiana citizens and

Truro Police Department IDENTITY THEFT. Policy Number: OPS-6.06A Effective Date: April 20, 2008 REFERENCE: I. GENERAL CONSIDERATIONS AND GUIDELINES

DISCLOSURE REGARDING BACKGROUND INVESTIGATION

Get back your good name. Refuse to be a target of identity crime again.

NAU Police Department s Identity Theft Victim s Packet

945 East Paces Ferry Rd., Suite 1475, Atlanta, GA aptos.com

Benefits Handbook Date March 1, Identity Theft Plan MMC

Instructions for completing the ID Theft Affidavit

Links are provided on to provide you with the information you need if you wish to obtain the following.

IDENTITY THEFT ADDITIONAL INFORMATION FORM Submittal Instructions

ID Theft Toolkit and Affidavit

Identity thieves use a variety of ways to gain access to your personal information:

Deluxe Provent SM : Protecting against expanded threats. Providing for expanded opportunities.

KANSAS STATE UNIVERSITY

APPLICANT DISCLOSURE: This is a sample form for your use. Per FCRA, you must obtain a signed disclosure prior to ordering a background check.

Call for assistance with registration and activation. You will be asked for your Access Code if registering by phone.

B. The College is considered a "creditor" under the Red Flags Rule because it defers payment for services rendered.

Description of Benefits for Family-IDprotect. Complete Management of Your Identity Recovery Case

Benefits Handbook Date November 1, Identity Theft Plan MMC

FirstReport Stay Protected & Informed

Frequently Asked Questions

WHAT DO MANY OF US HAVE IN COMMON WITH. Tiger Woods Oprah Winfrey Martha Stewart Warren Buffet Tom Cruise

What is Credit Monitoring?

Subject: Identity Theft, G-113 Department: All & Branches References: Part 717, NCUA Rules and Regs, FACT Act, Companion SOP s G-30 (Opening New

Identity Theft. A Recovery Plan. FEDERAL TRADE COMMMISSION IdentityTheft.gov

What is Identity Theft?

Identity Theft. Emergency Repair Kit Beavercreek Marketing, a division of Beavercreek Inc. All rights reserved.

Experian fraud alert phone number Address Submit

Frequently Asked Questions

Huntington Director Outlook Series I/IR. Talcott Resolution Life Insurance Company Separate Account Two. File No

Fraudulent Check, Credit Card Fraud and ID Theft Guide

Borrowing Guide for Small Businesses. Presented by Frost Bank November 15, 2016

Consumer Federation of America Best Practices for Identity Theft Services. March 10, 2011

Federal Reserve Bank of Philadelphia

Log on to: using Access Code MI to register and access the benefits provided by IDProtect.

Services and Features

PROCEDURE. This procedure is intended to identify third party arrangements and red flags involving College activities that will:

Services & Features for Employee Benefit Members

Contents. Table Of. Glossary. Identity Theft? What is. How Do I Prevent Identity Theft? What Do I Do if My. Identity is Stolen? Help You.

MANAGING THE RISK OF FRAUD

Polson/ Ronan Ambulance Service Identity Theft Prevention Program

Identity Theft. Protect Yourself from

Talcott Resolution Life Insurance Company or Talcott Resolution Life and Annuity Insurance Company

11/14/ FNBT FACT ACT

Transcription:

August 31, 2016 Lynn Sessions direct dial: 713.646.1352 lsessions@bakerlaw.com VIA EMAIL (SECURITYBREACH@ATG.WA.GOV) AND OVERNIGHT MAIL Attorney General Bob Ferguson Office of the Washington Attorney General Consumer Protection Division 800 5th Ave, Suite 2000 Seattle, WA 98104-318 Re: Incident Notification Dear Attorney General Ferguson: On July 22, 2016, R-C Healthcare Management (RCHM), a vendor working on behalf of our client, CHI Franciscan Healthcare Highline Medical Center ( Highline ), advised Highline that files containing patient information had inadvertently been left accessible via the internet by RCHM from April 21, 2016 to June 13, 2016. Upon notification, Highline immediately began an investigation and determined that the files may have contained patients names, dates of service, health insurance information and Social Security numbers. Highline is offering affected patients a free one-year membership in credit monitoring and identity theft protection services through Experian. Highline has also established a dedicated call center for patients to contact with questions. RCHM assured Highline that it has secured the files as of June 13, 2016. Highline has also requested RCHM to destroy the files and RCHM has confirmed it has done so. On August 31, 2016, Highline is mailing notification to 12,724 residents pursuant to the requirements of the Health Insurance Portability and Accountability Act ( HIPAA ), 45 C.F.R. 164.400-414 in substantially the same form as the documents enclosed herewith. Please do not hesitate to contact me if you have any questions regarding this matter.

Attorney General Bob Ferguson August 31, 2016 Page 2 Sincerely, Lynn Sessions Enclosures

Return Mail Processing Center PO Box 6336 Portland, OR 97228-6336 <<mail id>> <<First Name>> <<Last Name>> <<Address>> <<City>><<State>><<Zip>> <<Date>> Dear <First Name> <Last Name>>: CHI Franciscan Health Highline Medical Center ( Highline ) is committed to protecting the privacy and security of our patients health information. Regrettably, we are writing to inform you of an incident involving some of that information. On July 22, 2016, R-C Healthcare Management, a vendor working on behalf of Highline Medical Center advised Highline that files containing patient information had inadvertently been left accessible via the internet by R-C Healthcare, from April 21, 2016 to June 13, 2016. R-C Healthcare performed services for Highline Medical Center prior to CHI s acquisition of Highline Medical Center in 2014. The data involved was used in cost reporting functions from years 1993-1994 and 2008 2013. Upon notification, we immediately began an investigation and determined that the files may have contained your name, dates of service, health insurance information, and social security number. R-C Healthcare assured us that it has secured the files as of June 13, 2016. Your medical record information was not included and your care will not be affected. Upon validation of the completion of services, we will instruct R-C Healthcare to destroy the files. We have no knowledge that the information has been accessed, viewed, acquired or otherwise compromised by any unauthorized third party. However, out of an abundance of caution, we are offering you a free one-year credit monitoring membership from Experian s ProtectMyID Alert. This product helps detect possible misuse of your personal information and provides you with identity protection services focused on immediate identification and resolution of identity theft. Experian s ProtectMyID Alert is completely free to you and enrolling in this program will not hurt your credit score. For more information on identity theft prevention and Experian s ProtectMyID Alert, including instructions on how to activate your complimentary one-year membership, please see the additional information provided in this letter. We also recommend that you review the explanation of benefits statements you receive from your health insurer. If you see services that you did not receive, we recommend that you contact your insurer immediately. We deeply regret any concern this may cause you. Highline takes its responsibility to protect patient privacy very seriously and has taken immediate responsive action. Highline works to continually improve its policies, processes and educational offerings to ensure our patients receive the benefit of proven information security and confidentiality practices. To answer questions regarding this event, we are establishing a call center. If you have any questions or concerns regarding this matter, please do not hesitate to contact the call center at 1-888-839-9526, Monday through Friday, between the hours of 6:00 a.m. and 6:00 p.m. Pacific time. Sincerely, Judi Hofman, BCRT, CHPS, CAP, CHP, CHSS CHI Franciscan Regional Privacy Officer, Northwest P8371 v.05 08.30.2016

Activate ProtectMyID Now in Three Easy Steps 1. ENSURE That You Enroll By: <<DATE>> (Your code will not work after this date.) 2. VISIT the ProtectMyID Web Site to enroll: www.protectmyid.com/redeem 3. PROVIDE Your Activation Code: <<code>> If you have questions or need an alternative to enrolling online, please call 877-288-8057 and provide engagement #: <<number>> ADDITIONAL DETAILS REGARDING YOUR 12-MONTH PROTECTMYID MEMBERSHIP: A credit card is not required for enrollment. Once your ProtectMyID membership is activated, you will receive the following features: Free copy of your Experian credit report Surveillance Alerts for: Daily Bureau Credit Monitoring: Alerts of key changes & suspicious activity found on your Experian, Equifax and TransUnion credit reports. Identity Theft Resolution & ProtectMyID ExtendCARE: Toll-free access to US-based customer care and a dedicated Identify Theft Resolution agent who will walk you through the process of fraud resolution from start to finish for seamless service. They will investigate each incident; help with contacting credit grantors to dispute charges and close accounts including credit, debit and medical insurance cards; assist with freezing credit files; contact government agencies. It is recognized that identity theft can happen months and even years after a data breach. To offer added protection, you will receive ExtendCARE TM, which provides you with the same high-level of Fraud Resolution support even after your ProtectMyID membership has expired. $1 Million Identity Theft Insurance * : Immediately covers certain costs including, lost wages, private investigator fees, and unauthorized electronic fund transfers. Activate your membership today at www.protectmyid.com/redeem or call 877-288-8057 to register with the activation code above. Once your enrollment in ProtectMyID is complete, you should carefully review your credit report for inaccurate or suspicious items. If you have any questions about ProtectMyID, need help understanding something on your credit report or suspect that an item on your credit report may be fraudulent, please contact Experian s customer care team at 877-288-8057. Even if you choose not to take advantage of this free credit monitoring service, we recommend that you remain vigilant to the possibility of fraud and identity theft by reviewing your credit card, bank, and other financial statements for any unauthorized activity. You may also obtain a copy of your credit report, free of charge, directly from each of the three nationwide credit reporting agencies. To order your credit report, free of charge, once every twelve months, please visit www.annualcreditreport.com or call toll-free at 1-877-322-8228. Contact information for the three nationwide credit reporting agencies is as follows: Equifax PO Box 740241 Atlanta, GA 30374 www.equifax.com 1-800-685-1111 Experian PO Box 2002 Allen, TX 75013 www.experian.com 1-888-397-3742 TransUnion PO Box 2000 Chester, PA 19016 www.transunion.com 1-800-916-8800 If you believe that you are the victim of identity theft or have reason to believe that your personal information has been misused, you should immediately contact the Federal Trade Commission and/or the Office of the Attorney General in your home state. Contact information for the Federal Trade Commission is as follows: Federal Trade Commission 600 Pennsylvania Avenue, NW Washington, DC 20580 www.ftc.gov/idtheft 1-877-438-4338 P8372 v.05 08.30.2016

You can obtain information from these sources about steps an individual can take to avoid identity theft as well as information about fraud alerts and security freezes. You should also contact your local law enforcement authorities and file a police report. Obtain a copy of the police report in case you are asked to provide copies to creditors to correct your records. * Identity theft insurance is underwritten by insurance company subsidiaries or affiliates of AIG. The description herein is a summary and intended for informational purposes only and does not include all terms, conditions and exclusions of the policies described. Please refer to the actual policies for terms, conditions, and exclusions of coverage. Coverage may not be available in all jurisdictions. P8373 v.05 08.30.2016

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback