Kansas Health Plan Alerts 1,625 Members of Impermissible PHI Disclosure
Data Privacy and Security Perspective
When sending group communications, confirm the information is accurate and being sent to the correct parties
A health plan in Kansas alerted 1,625 plan members that some of their protected health information (PHI) had been disclosed to other individuals. On November 26, 2018, the health plan mailed ID cards and welcome packets to 1,625 plan members; however, the letters were accidentally sent to incorrect addresses. The letters contained patients’ full names and Medicaid ID numbers. After the error was detected on December 3, 2018, replacement ID cards and welcome packets were mailed to the correct addresses.