Clinic business

Christie Clinic Notifies Patients of Email Account Breach | Health care

CHAMPAIGN – The Christie Clinic is notifying an undisclosed number of patients that unauthorized access was obtained last summer to one of its administrative email accounts.

An investigation has been launched after the Christie Clinic discovered suspicious activity linked to one of its work email accounts, according to chief operating officer Zach Sehy.

“The unauthorized actor has not had access to Christie Clinic’s electronic medical records, its information network, the MyChristie patient portal, or patient care, or impacted it in any way Either,” he said.

Christie’s investigation determined in January that there had been unauthorized access to the single email account from July 14 to August 19 of last year, according to an announcement about the breach.

The investigation determined that the unauthorized access was apparently intended to intercept a business transaction between Christie Clinic and a third-party vendor, Sehy said.

The investigation was unable to determine whether the account’s email messages were viewed or viewed by the unauthorized actor. However, the clinic has identified information that may have been contained in the affected email account and determined that it may contain certain information relating to certain individuals such as names, addresses, social security numbers, medical information and health insurance information, according to the clinic. .

Sehy said, “out of an abundance of caution,” the notification included everyone who had encountered or received services from Christie Clinic for whom there is a record.

“These people include current and past Christie Clinic patients or users of Christie Clinic services, including laboratories, radiology, hands-on care, or flu clinics, even if they were a once-in-a-lifetime visit,” Sehy said.

Patients who received care from a Christie physician in a hospital were also notified, he said.

“Out of an abundance of caution, letters were sent to these individuals because our internal investigation and professional forensic investigators were unable to determine whether anyone’s information was in fact accessed,” he said. he declares.

To date, Christie Clinic has no evidence of misuse of patient information, but federal regulators and anyone who may have been affected have been notified, Sehy said.

The written notice to patients includes an offer from Christie of free credit monitoring and identity theft protection services, and says the clinic has also set up a dedicated patient assistance line, a- he declared.

“Christie Clinic is committed to protecting the privacy and security of our patient information,” said Sehy. “We use industry-leading security measures and continually improve our efforts to protect the information in our custody.”