Patients PHI Exposed in Two Separate HIPAA Breaches

by | Jun 18, 2018

Two HIPAA-covered organizations are making their patients aware that some of their protected health information (PHI) has been stolen by unauthorized individuals in recent times.

PHI Stolen from Staff Member of Christus Spohn Hospitals

The protected health information of people being treated at two Christus Spohn Hospitals in Corpus Christi has been obtained in a recent theft.

A Christus Spohn staff member was burgled on April 16, 2018 and PHI was obtained including data such as names, birth dates, dates of service, medical history numbers, account numbers, ages, and other medical information. No financial details, driver’s license numbers, or Social Security numbers were taken.

Patients impacted by the theft had previously attended Christus Spohn Health System’s Memorial or Shoreline hospitals. While PHI was stolen, the information does not seem to have been used improperly. Christus Spohn has revealed that around 1,800 patients have been impacted by the incident.

Measures have already been implemented to prevent further incidents like this from occurring, and the staff member in question has received additional training on actions that need to be adapted to ensure protected health information is secured.

PHI of Clients of a San Francisco Acupuncturist Clinic Stolen

The patients of San Francisco acupuncturist Denise M. Bowden are being alerted that some of their PHI was taken from her Pacific Heights clinic. The acupuncturist noticed the burglary on April 30, 2018, with the offices illegally entered at some point over the previous weekend.

The thief obtained a computer from the clinic that contained data including clients’ names, addresses, contact telephone details, times and dates of service, diagnosis codes, and health insurance details. No financial details or Social Security information was stored on the computer in question.

Even though the computer was password protected, patient data were not encrypted and could possibly be seen by unauthorized people. No reports have been filed to suggest any of the data on the computer has been accessed and used improperly. Patients were alerted regarding  of the breach by mail on June 11, 2018.


Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.


Please enable JavaScript in your browser to complete this form.

Patrick Kennedy

Patrick Kennedy is a highly accomplished journalist and editor with nearly two decades of experience in the field. With expertise in writing and editing content, Patrick has made significant contributions to various publications and organizations. Over the course of his career, Patrick has successfully managed teams of writers, overseeing the production of high-quality content and ensuring its adherence to professional standards. His exceptional leadership skills, combined with his deep understanding of journalistic principles, have allowed him to create cohesive and engaging narratives that resonate with readers. A notable area of specialization for Patrick lies in compliance, particularly in relation to HIPAA (Health Insurance Portability and Accountability Act). He has authored numerous articles delving into the complexities of compliance and its implications for various industries. Patrick's comprehensive understanding of HIPAA regulations has positioned him as a go-to expert, sought after for his insights and expertise in this field. Patrick's bachelors degree is from the University of Limerick and his master's degree in journalism is from Dublin City University. You can contact Patrick through his LinkedIn profile:

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.

Comprehensive HIPAA Training

Used in 1000+ Healthcare Organizations and 100+ Universities

    Full Course - Immediate Access

    Privacy Policy