NRAD Medical Associates of Garden City, New York has informed 97,000 patients that an internal employee inappropriately accessed protected health information (PHI) and patient billing data back in April 2014.
According to newyork.cbslocal.com, the radiologist was able to get around IT security safeguards in place and access information such as date of birth, address, Social Security number, and health insurance information. NRAD said that it “immediately enhanced security measures” and doesn’t believe any of the compromised data was used maliciously. “We believe there is very low risk from this event and the data breach has been contained. We have no evidence that any customer financial or credit card information was involved,” the organization said, according to the report.
It’s unknown what type of security safeguards that NRAD had in place when the employee accessed the data. NRAD has advised that patients review their credit scores and the radiologist has since left the organization.