The Rothman Institute has released a letter regarding an internal breach of patient data that may have affected the privacy of some patients.
The Philadelphia-based orthopedic institute, which has locations throughout Atlantic and Cape May counties, said in a statement Monday that they discovered a former employee had removed paper copies of daily patient schedules from the offices without permission Aug. 11.
The files taken covered service from March 18 to May 10. The information included patient names, telephone numbers, dates of birth, locations, staff or physicians, codes for insurance companies and copay amounts, date and time of appointments, the reason for visits, and internal-use chart and code numbers.
Information not on the files, and therefore not a part of the breach, includes Social Security numbers, credit card information, addresses and identification numbers.
An investigation revealed that no electronic copies were taken nor was the information shared with any unauthorized person, according to Nicole Coleman, director of compliance and risk management for Rothman.
The letter from Rothman said the incident was reported to the authorities who will continue to investigate. Asked to clarify which authorities were notified, Coleman declined to comment saying no further information was available.
The institute is offering a year of free credit monitoring to affected patients as a precaution.
“We are also taking steps to prevent a recurrence ... including reviewing our current policies on patient information privacy and modifying our procedures,” Coleman said.
Contact Anjalee Khemlani:
@AnjKhem on Twitter