Geisinger Health Plan (GHP) suffered data breach due to unauthorized PHI disclosure which affected 2,814 members from 220 employers. The incident occurred due to processing error. Facility learned about the incident on August 4. According to the statement, the error may have led to PHI being mistakenly mailed to other citizens. 
“Geisinger Health Plan has received national attention for its ability to foster innovation, while uniquely and effectively managing medical costs and improving outcomes.” As mentioned on the website.
Affected information due to this data breach included Member name, date of birth, health insurance premium information, member identification number and smoking status. Medical treatment or financial information like Social Security numbers, were not included in the mail.
“We have contacted both the affected members and businesses regarding the processing error and the possibility of a disclosure,” Geisinger Privacy Officer John Gildersleeve said in a statement. “In addition, we have requested that the invoices be returned so they can be properly destroyed in compliance with Geisinger Health System policies and procedures.”
As per the Gildersleeve, only affected individuals by this incident will receive notification letter.
“We take our responsibility to protect personal information seriously,” he said. “We apologize for any inconvenience and remain dedicated to safeguarding member information.”
According to the statement:
Our roots evolved from a rural, prepaid health plan offered as a pilot program in 1972 to Geisinger Medical Center employees and residents of the five counties that surrounded the hospital. In 1985, the Health Plan received its Certificate of Authority to operate an HMO under the authority of the Pennsylvania Health Maintenance Act of 1973. The Health Plan had a significant premium advantage during the period of escalating healthcare costs in the 1980s and ’90s. Membership grew rapidly, and in 1990, the Health Plan reached its 100,000-member milestone.
___________________________________________________________________________________________
Alertsec is used by organizations that have recognized the need to protect their information.Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe.