Saco, Maine-based Sweetser notified 22,000 patients Oct. 25 about a data breach that may have affected their protected health information.
In June, the healthcare provider saw unusual activity within its email system. Upon further investigation, Sweetser discovered that a limited number of employees' emails were subject to unauthorized access. There is no evidence that patient data has been misused.
Patient data that may have been exposed included names, addresses, dates of birth, telephone numbers, Social Security numbers, health insurance information and identification numbers, driver's license numbers, Medicare or Medicaid information, payment or claims information, diagnostic codes, and information regarding medical conditions and treatment.