Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
USA: THNM notifies OCR of data breach
True Health New Mexico, Inc. ('THNM') notified, on 17 November 2021, the U.S. Department of Health and Human Services ('HHS') Office for Civil Rights ('OCR') of a data security incident affecting 62,983 individuals. In particular, the THNM stated that, on 5 October 2021, it learned that some personal information of individuals could have been accessed when an unauthorised third party gained access to their IT systems. In addition, the THNM stated that the information involved for each individual varied but may have included names, dates of birth, age, home addresses, email addresses, insurance information, medical information, social security numbers, health account member ID, provider information, dates of service, and provider identification number.
Moreover, the THNM stated that upon learning of the incident, it had promptly taken steps to secure and contain the impacted systems and quickly retained external cybersecurity professionals to assist them in an investigation. Furthermore, the THNM stated that it will notify all potentially affected individuals for whom it has a valid mailing address, and that it has arranged for complimentary identity protection and credit monitoring services for those individuals impacted.
You can access details on the OCR Portal here.
Send us your Feedback!
Please let us know what you think of DataGuidance! It will only take 60 seconds and help us make the site better for you.
