Ads by TechWords

See your link here
Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 
 

'Human error' exposes patients' Social Security numbers in N.C.

More than 600 Blue Cross members in the state were affected by the breach

February 7, 2006 12:00 PM ET

Computerworld - A "human error" at Blue Cross and Blue Shield of North Carolina allowed the Social Security numbers of more than 600 members to be printed on the mailing labels of envelopes sent to them with information about a new insurance plan.
The mistake affected patients who had applied for a new health savings account insurance plan, said Gayle Tuttle, a spokeswoman for the Chapel Hill, N.C.-based insurer. "The mailing label on a welcome letter that we sent out to 629 people enrolled in one of our individual insurance plans contained an 11-digit tracking number, nine of which were the members' Social Security numbers," Tuttle said. "The release of this information is the result of a regrettable human error."

As part of a broader bid to enhance privacy, Blue Cross has been using a new subscriber number instead of Social Security numbers to identify patients, Tuttle said. Even so, there is still a "linking" that goes on internally between the subscriber IDs and Social Security numbers that may have contributed to the error, she said.
The problem was discovered on Jan. 30, and letters were sent to the affected individuals on Feb. 1 informing them of the breach and instructing them to check for fraudulent activity with the major credit reporting bureaus. "We are taking this very seriously," Tuttle said. "But this affects only a very tiny percentage of our members."
Following the incident, Blue Cross is looking at its internal processes and procedures to see how such mistakes can be avoided in future, Tuttle said.
The incident at Blue Cross is similar to one involving The Boston Globe last week and another case involving tax preparer H&R Block Inc. in Kansas City, Mo.
In the Globe incident (see " Newspapers' Exposure of Data Points Out Hidden Risks"), confidential information belonging to more than 200,000 subscribers was inadvertently exposed when the Worcester Telegram & Gazette, a sister publication in Worcester, Mass., reused paper containing their names, credit card numbers and bank account information to print routing labels that were attached to bundles of newspapers.
In the H&R Block case, the company accidentally embedded Social Security numbers in a 47-digit tracking number on packages used to mail free copies of the company's TaxCut tax preparation software in mid-December. The problem was reported to the company by an affected individual shortly thereafter, and letters were sent to all affected persons on Dec. 22, said H&R Block spokeswoman Denise Sposato.
The problem was the result of an "inadvertent human error" and affected only a small percentage of former H&R Block clients, she said.
"The Social Security numbers were embedded within this 47-digit string. They were not broken out in any way shape or form," making it extremely difficult for anyone to even notice the error, Sposato said. In fact, less than 10 of the affected individuals detected the problem on their own, she said.
"We've been around for over 50 years, so if anybody knows about the sensitivity and confidentiality of financial data, it is H&R Block," Sposato said. "This was totally contrary to H&R Block's policies and procedures."
Since the incident, H&R Block has completed an investigation into what happened and has fixed the problem. She did not offer further details.

xml"Data Security Breaches" RSS feed



Additional Resources

POLL RESULTS
Accelerate your knowledge of the IT world you inhabit by viewing the results of a series of polls taken by your IT peers. These polls of 100+ IT professionals each are available for full viewing. They cover key topics such as virtualization, processor performance, green IT, cloud computing and many others. Be a part of the buzz.
WHITE PAPER
Technology is complex. Keeping it running productively shouldn't be. To that end, you want to minimize the number of solutions needed in-house to simplify operations, maintenance, and support. Kodak offers a best-practices model. One company provides support for both scanner and software, for fast problem resolution without vendor finger-pointing. Download now!
WHITE PAPER
Utilizing demand intelligence improves the precision of pricing, product assortments, channel/store placement, and promotion, which are all essential for sustainable revenue management performance. Learn more, download this free whitepaper today.

White Papers & Webcasts

Accelerate SSL Encrypted Applications
The amount of SSL traffic is growing in the enterprise. Because it is encrypted, it cannot be properly controlled and accelerated. Blue Coat...  

Data Protection and Disaster Recovery with iSCSI and VMware
Data protection and disaster recovery are top of mind for any IT manager, and the challenges of complexity and cost remain as obstacles....

ESG Lab Field Audit
Many companies have successfully implemented Riverbed WAN optimization solutions within their Cisco networks. This ESG Lab Field Audit document explores the success that...  

Usability Is Everything
Learn what sets Workday's HR and Payroll solutions apart from the competition....

Shape Your Apps Strategy to Reflect New SaaS Licensing and Pricing Trends
Why are smart companies choosing software-as-a-service? Find out in the complimentary Forrester Research report...  

The Value of Real SaaS at Workday
Cost savings, speed to value, and innovation brought to the enterprise by Workday's software-as-a-service solutions for HR and Payroll....

Natural User Interface for Enterprise Applications
Learn how a revolutionary user interface can make a complex enterprise application so intuitive even casual users can jump right in....  

SaaS at Flextronics, Inc.
Dave Smoley, CIO of Flextronics, discusses the real value of software-as-a-service and why he chose Workday for his HR solution....

A Truly Global HCM System
Learn about a system built with advanced object-oriented technology that support multi-national requirements and costs less to implement, maintain and upgrade....  

Why Compliance Pays
This OnDemand webcast explores the relationship that firms with best compliance records have higher revenue, greater customer retention, lower financial losses from data...