Syracuse Hospital Records of 1216 Individuals Impacted in HIPAA Breach

by | Nov 12, 2018

Upstate University Hospital in Syracuse, NY, is getting in touch with 1,216 patients to advise them that some of their protected health information (PHI) has been impermissibly accessed by a former member of staff.

Upstate University Hospital first identified the breach on September 12, 2018, which led to a full investigation to find out which patients had had their privacy impacted. The investigation showed that the former member of staff first accessed patient health records without any valid work reason for doing so on November 3, 2016. Patient records went on being accessed until October 23, 2017.

The investigation did not unearth any proof to suggest any information had been printed, copied, or forwarded outside the group.

It is not obvious why the former member of staff accessed the records. No details on the justification for the privacy violations has been made public.

Highly sensitive data including Social Security numbers, financial data, health insurance information and other information usually sought by identity thieves were not impacted and remained protected at all times.

The breach was restricted to names, ages, addresses, medical record detailss, dates of service, the range of services received, diagnoses, treatment data, and details of prescriptions.

All employees at the hospital with permitted access to PHI already receive in-depth training on safeguarding the privacy and security of patient information and are familiar with their responsibilities with under HIPAA.

The privacy breach has led to Upstate University Hospital completing a review of safeguards to keep patient health information private and confidential and those safeguards have now been enhanced.

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.


Please enable JavaScript in your browser to complete this form.

Patrick Kennedy

Patrick Kennedy is a highly accomplished journalist and editor with nearly two decades of experience in the field. With expertise in writing and editing content, Patrick has made significant contributions to various publications and organizations. Over the course of his career, Patrick has successfully managed teams of writers, overseeing the production of high-quality content and ensuring its adherence to professional standards. His exceptional leadership skills, combined with his deep understanding of journalistic principles, have allowed him to create cohesive and engaging narratives that resonate with readers. A notable area of specialization for Patrick lies in compliance, particularly in relation to HIPAA (Health Insurance Portability and Accountability Act). He has authored numerous articles delving into the complexities of compliance and its implications for various industries. Patrick's comprehensive understanding of HIPAA regulations has positioned him as a go-to expert, sought after for his insights and expertise in this field. Patrick's bachelors degree is from the University of Limerick and his master's degree in journalism is from Dublin City University. You can contact Patrick through his LinkedIn profile:

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.

Comprehensive HIPAA Training

Used in 1000+ Healthcare Organizations and 100+ Universities

    Full Course - Immediate Access

    Privacy Policy