On January 27, 2023, DotHouse Health Inc. filed notice of a data breach with the U.S. Department of Health and Human Services Office for Civil Rights after learning that an unauthorized party was able to access confidential information stored on the company’s computer systems. Based on the company’s official filing, the incident resulted in an unauthorized party gaining access to consumers’ full names, addresses, dates of birth, medical record numbers, diagnosis/conditions, medications, other treatment information, and claims information. After confirming that consumer data was leaked, DotHouse began sending out data breach notification letters to the 10,000 patients who were impacted by the recent data security incident.

If you are a current or former patient of DotHouse Health, chances are you didn’t think twice before providing the organization with any information staff members requested. Indeed, as a well-known medical provider, you trusted DotHouse, not only to provide you with the care you needed but also to safeguard any information you provided the organization. However, the recent DotHouse Health, Inc. data breach may call the organization’s commitment to data security into question. As we’ve discussed in prior posts, organizations that store your information have a duty to protect it, and if they are negligent in storing your data, they may be liable through a data breach lawsuit.

What We Know So Far About the DotHouse Health Breach

The available information regarding the DotHouse Health breach comes from the company’s filing with the U.S. Department of Health and Human Services Office for Civil Rights as well as a notice posted on the company’s website. According to these sources, in late November 2022, DotHouse detected suspicious activity within its computer network. In response, DotHouse secured its systems and then launched an investigation into the incident in hopes of determining what, if any, patient information was leaked.

The DotHouse investigation confirmed that an unauthorized party had gained access to its computer network between October 31, 2022 and November 27, 2022. The company later determined that some of the files that were accessible to the unauthorized party contained confidential patient information.

Upon discovering that sensitive consumer data was made available to an unauthorized party, DotHouse Health began to review the affected files to determine what information was compromised and which consumers were impacted. While the breached information varies depending on the individual, it may include your full name, address, date of birth, medical record numbers, diagnoses and conditions, medications, other treatment information, and claims information.

On January 27, 2023, DotHouse Health sent out data breach letters to all individuals whose information was compromised as a result of the recent data security incident. According to the U.S. Department of Health and Human Services Office for Civil Rights, the DotHouse Health, Inc. data breach affected 10,000 patients.

More Information About DotHouse Health Inc.

DotHouse Health Inc. is a federally qualified health center located in Dorchester, Massachusetts. DotHouse Health provides primary care services with adult, family, pediatrics and women’s Health departments. The organization also has an on-site dental care clinic, eye care clinic and behavioral health clinic. DotHouse Health is affiliated with Boston Medical Center. DotHouse Health employs more than 314 people and generates approximately $20 million in annual revenue.



Source link