Salt Lake City-based Alliance Health, a platform for individuals managing chronic health conditions, has reported a data breach that left customer information accessible on the Internet for more than two years.
The company learned Dec. 17 that a test database containing costumer information was inadvertently left exposed from July 2013 to December 2015. An internal investigation found customers' names, addresses, telephone numbers, email addresses, medications and some clinical information may have been included in the database. There were no Social Security numbers, credit card numbers of banking information included.
Alliance Health has secured the database and removed it from public view. The company says it has no indication any information has been misused.
A HIPAA Journal report indicates 40,000 individuals are affected by this incident.
More articles on data breaches:
5 recent HIPAA settlements
Florida radiology center announces breach after records literally fall off back of truck
Vidant Health employees victims of outsider breach