Aria Care Partners (“Aria”), experienced a data security incident that may have involved personal and / or protected health information belonging to certain patients of our affiliated vision provider companies. Aria has sent notification of this incident by way of the United States Postal Service to potentially impacted individuals and provided resources to assist them.
Read More:Â CIO Influence Interview with Philip George, Executive Technical Strategist at Merlin Cyber
Aria became aware of a possible data security incident involving its vision file server. Following the discovery, Aria immediately took steps to secure the digital environment and engaged a dedicated team of external cybersecurity experts to assist in responding to and investigating the incident. As a result of the investigation, Aria learned that an unauthorized actor may have accessed or acquired certain files within our systems. We thereafter launched a comprehensive review of all potentially affected information to identify the individuals and information involved. Our review concluded on December 20, 2023, at which time we determined that personal and / or protected health information may have been involved in this incident. Please note that Aria has no evidence of any actual or suspected misuse of information involved in this incident.
Aria is offering all potentially affected individuals with complimentary identity protection services through IDX, a leader in consumer identity protection. These services include credit and dark web monitoring, a $1,000,000 identity theft insurance reimbursement policy, and fully managed identity theft recovery services.
Based on the investigation, the affected personal and / or protected health information may have included names, Social Security numbers, dates of birth, driver’s license numbers, medical treatment and/or diagnosis information, and/or health insurance information. Please note that not all data elements were affected for all individuals.
Read More:Â CIO Influence Interview with Steve Stone, Head of Rubrik Zero Lab
On January 19, 2024, Aria provided notice of this incident to the potentially impacted individuals. In so doing, Aria provided information about the incident and resources that potentially impacted individuals may utilize to protect their information. In addition, Aria has established a toll-free call center to answer questions about the incident and to address related concerns.
Read More:Â CIO Influence Interview with Erin Hamm, Field Chief Data Officer, Comcast Technology Solutions
[To participate in our interview series, please write to us at sghosh@martechseries.com ]
