Institute on Aging (“IOA”) has become aware of a data security incident that may have involved the personal and protected health information of some of its clients and employees.
SAN FRANCISCO, July 20, 2018 /PRNewswire/ -- Institute on Aging (“IOA”) has become aware of a data security incident that may have involved the personal and protected health information of some of its clients and employees. IOA has sent notification to the potentially involved clients to notify them of this incident and to provide resources to assist them.
On May 28, 2018, IOA discovered that some of its employees’ email accounts may have been compromised. Upon learning of this incident, IOAs immediately reset the passwords for all employee email accounts and set up an additional layer of threat protection. IOA also launched an investigation and engaged an independent, third-party cybersecurity expert to provide assistance. The investigation indicated that emails within the impacted email accounts may have been accessed without authorization, and some of those emails may have contained certain clients’ and employees’ names, addresses, phone numbers and email addresses, Social Security numbers, medical plan information, including health plan identification numbers and medical treatment information. However, there is no evidence of the misuse of any information potentially involved in this incident.
IOA takes the security of all client and employee information very seriously and is taking steps to minimize the likelihood that a similar event could occur in the future, including strengthening security measures and ensuring that IOA networks and systems are secure.
Notification letters mailed today include information about the incident and steps potentially impacted individuals can take to monitor and protect personal information. IOA has established a toll-free call center to answer questions about the incident and related concerns. The call center is available Monday through Saturday, 8:00 a.m. - 8:00 p.m. Central Time (excluding U.S. holidays), and can be reached at 1-855-682-4175. In addition, out of an abundance of caution, IOA is offering identity protection services through AllClear ID to potentially impacted individuals at no cost.
The privacy and protection of client and employee information is a top priority for IOA, which deeply regrets any inconvenience or concern this incident may cause.
View original content:http://www.prnewswire.com/news-releases/institute-on-aging-notifies-individuals-of-data-security-incident-300684160.html
SOURCE Institute on Aging