Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
USA: Allied Eye notifies OCR of data security incident
Allied Eye Physicians & Surgeons Inc. notified, on 27 April 2022, the U.S. Department of Health and Human Services ('HHS') Office for Civil Rights ('OCR') of a data security incident affecting 20,651 individuals. In particular, Allied Eye stated that it had been notified by Eye Care Leaders ('ECL'), a third-party service provider used by Allied Eye to store electronic patient medical records and related information, that an unknown third party had accessed the network of ECL, which may have affected protected health information or other personal information.
Furthermore, Allied Eye highlighted that it is not aware of any protected health information or personal information being misused, but noted that the affected information included names, addresses, telephone numbers, dates of birth, social security numbers, and medical treatment and diagnosis information.
In response to the incident, Allied Eye detailed that it had implemented additional security measures, and had established a confidential, toll-free inquiry line through which additional information can be obtained.
You can read the notice here, and access details on the OCR portal here.
Send us your Feedback!
Please let us know what you think of DataGuidance! It will only take 60 seconds and help us make the site better for you.
