The Easter Seal Society of Superior California sent health data breach notification letters to 3,026 Easter Seals clients and potential clients on Friday after an employee’s work-issued laptop was stolen.
According to the release, the laptop was among the stolen items when the employee’s vehicle was broken into on December 10. Though not all patients had the same data compromised, the report said that there was some grouping of date of birth, health care provider information, patient identification number, health care billing information and therapy notes.
Though Easter Seals doesn’t believe any sort of fraudulent activity has occurred to this point, it has hired forensics experts to assist in determining the scope of the incident. The charity advised clients to review healthcare insurer benefits to see if there are any disparities. “Easter Seals also encourages all concerned individuals to remain vigilant, to review account statements, and to monitor credit reports for suspicious activity,” stated the press release.
Easter Seals didn’t indicate whether the laptop was encrypted or even password-protected. Because it’s an organization dedicated to services and education for those with disabilities and not a healthcare provider, it’s likely considered a HIPAA business associate in this case.
The charity serves children and adults in Alpine, Amador, Calaveras, El Dorado, Nevada, Placer, Sacramento, San Joaquin, Stanislaus, Sutter, Tuolumne, Yolo and Yuba counties. Easter Seals offers teachers, therapists and other health professionals help people with disabilities to speak, walk, work and care for themselves.