TheDenverChannel.com reports that Colorado's Department of Health Care Policy and Financing recently informed 1,918 clients that their personal information had been accessed inappropriately (h/t HealthITSecurity).
A temporary employee of a third-party contractor, the Colorado Community Health Alliance (CCHA), forwarded the data, including names, birthdates, addresses and protected health information, from a work e-mail address to the temporary employee's personal e-mail address on November 21, 2013.
The breach was discovered during an audit the following day, and the employee was fired.
"The list may have been sent for the employee's personal use in a separate business," the department told TheDenverChannel.com.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
All those affected are being notified by mail.