November 1, 2018
Roughly 10,000 patients of Raley’s Pharmacy are being informed that some of their protected health information (PHI) has possibly been compromised.
On September 24, 2018, a laptop computer was stolen from a Raley’s drugstore that might have contained some patients’ PHI.
Raley’s pharmacy instantly started an inquiry to decide what information was saved on the appliance. Interviews were carried out with staff members who had used the appliance in an attempt to know the kinds of content that might have been disclosed. The electronic mail accounts of workers were also checked for attachments and links to documents that had ePHI, to decide which records had been downloaded or were saved in cache files in a provisional directory on the laptop.
After cautious analysis, Raley’s Drugstore was able to decide that the only patients affected by the safety occurrence were those that had paid a visit to Raley’s, Bel Air, and Nob Hill Foods pharmacy between January 1, 2017 and September 24, 2018 to have medicines filled.
An inquiry of the records which had possibly been downloaded to the laptop verified that extremely confidential information such as Social Security numbers, credit card information, addresses, and driver’s license numbers had not been compromised. The breach was restricted to first and last names, medical condition, pharmacy location visited, visit dates, dates of birth, gender, prescription information, and health plan ID numbers.
As Health plan/insurance information has possibly been disclosed, affected patients have been advised to check their Explanation of Benefits statements for any indication of fake activity.
The safety occurrence has prompted Raley’s Pharmacy to implement encryption on all laptops to avoid data access by illegal people should more theft occurrences happen. Additional safety controls are also being assessed.