University of Florida Medical Clinic Acknowledges Security Breach
The personal information of almost 15,000 patients may have been exposed.
The University of Florida recently began notifying 14,339 patients of Gainesville's UF&Shands Family Medicine at Main clinic that their personal information may have been exposed by an employee with ties to an identity theft ring (h/t PHIprivacy.net).
The university apparently learned of the incident on October 25, 2012, when the U.S. Secret Service told the university about the employee's involvement in the identity theft ring. According to the Office of the State Attorney, the U.S. Secret Service, and the IRS, patient data acquired and possibly sold to a third party may have included names, addresses, birthdates and Social Security numbers.
"We share our patients' frustration regarding this situation and regret that it happened," University of Florida chief privacy officer Susan Blair said in a statement. "We are committed to serving our patients and helping them get through any problems that arise stemming from this incident."
Ocala.com's Kristine Crane identifies the person involved as Arthur Thomas, 25, of Gainesville. Thomas was arrested on Tuesday.
Affected patients are being offered one year of fraud resolution services. Anyone who was a patient at the clinic between March 2009 and October 2012 and hasn't received a letter from the university is advised to call (877) 552-1299 for more information.