Upstate University Hospital in Syracuse, N.Y., is notifying 1,216 patients of a breach after it learned that an employee had accessed their medical records without authorization, according to syracuse.com.
The former employee accessed the records between Nov. 3, 2016, and Oct. 23, 2017. The hospital, which learned about the breach Sept. 12, told the publication that it does not believe any of the information was printed, redirected or misused. However, the hospital said affected patients should be on the look out for suspicious activity.
The compromised data includes: names, age addresses, insurer and medical record numbers, dates patients received care at the hospital, services that were rendered, and diagnosis and other care and treatment information.
An Upstate spokesperson told syracuse.com that he was not aware of the former employee being charged with a crime as a result of the incident. The spokesperson added that it provides in-depth training on the privacy and security of patient information to employees, and said the hospital has strengthened safeguards on patient information.