Feb. 15, 2017
Dignity Health St. Joseph’s Hospital and Medical Center has identified a data breach incident. St. Joseph’s is notifying patients whose records may have been compromised.
As part of St. Joseph’s commitment to the security of its patients, the hospital consistently reviews employees’ access to electronic medical records. As a result, the hospital has identified that from Oct. 1 through Nov. 22, 2016, a part-time hospital employee viewed portions of approximately 600 patient medical records without a business reason.
Information that may have been viewed included medication records, certain demographic information including name and date of birth, and clinical data such as doctors’ orders and diagnostic information. Because the information viewed did not include Social Security, billing or credit card information, the hospital has no reason to believe these patients need to take any action to protect themselves against identity theft.
Dignity Health St. Joseph’s Hospital and Medical Center is deeply committed to protecting its patients. Any person who accesses medical records without a job-related reason is in violation of St. Joseph’s policy and appropriate action has been taken in response to this event.
St. Joseph’s regrets any inconvenience caused by this incident. Letters have been mailed to patients whose medical records may have been viewed and the hospital has established a call center to answer any questions they may have. Individuals who were patients at St. Joseph’s between Oct. 1, and Nov. 22, 2016 and have questions, can call 1-877-604-5781.