Grady Memorial Hospital announced this yesterday that an estimated 900 EMS ambulance service patients may have had personal information stolen this year.
The data breach occurred after an employee of Advanced Data Processing, Inc., a company which handles the hospital’s ambulance billing system, illegally stole thousands of patients’ data nationwide from numerous hospitals, including Grady. According to hospital spokeswoman Denise Simpson, some personal records were compromised between mid-January and mid-October.
“Some Grady EMS ambulance service patients are being notified that selected personal information may have been stolen,” she said in a statement.
Personal medical records were not exposed in security violation, but patient records including names, social security numbers, and dates of birth were disclosed over the course of that nine month period. To help patients, the billing company has offered victims one year’s worth of free credit monitoring and has taken action against its former employee.
Read more: Joeff Davis, Creative Loafing