DJO Global alerted patients who received a DJO Global product from San Francisco-based Dignity Health's three St. Rose Dominican Hospital campuses of a potential data breach.
Patients who received a DJO Global product between July 17, 2017, and Oct. 16, 2017, from the following hospital campuses are at risk:
- Henderson, Nev.-based St. Rose Dominican Hospital's Siena campus
- Las Vegas-based St. Rose Dominican Hospital's San Martin campus
- Henderson-based St. Rose Dominican Hospital's De Lima campus
During this timeframe, patients who received a product at the hospitals or the hospitals' same-day surgery centers may have filled out and signed a DJO Global Patient Product Agreement form, acknowledging receipt of the product. Shortly after the aforementioned treatment period, the forms were picked up by a DJO vendor and were then lost in transit.
DJO notified the Department of Justice of the breach. The PPA form contained private patient information including names, birthdays, addresses, product order information, diagnosis codes, health plan information and health plan identification numbers.
According to a company statement, "DJO is taking this matter very seriously and has conducted a thorough investigation to mitigate the circumstances resulting from this incident. To ensure an incident like this does not happen again, DJO has implemented new quality controls in its mailing processes and retrained its vendor on the safeguarding of paper records containing protected health information."
Any affected individuals can call 877-214-6674 for more information.