Change Healthcare Data Notification Update

On June 20, Change Healthcare began notifying affected customers of a HIPAA breach caused by the ransomware attack that took down their services for weeks starting in February.  TherapyNotes received a notice from Change Healthcare that noted to date, they “have not identified specific individuals whose PHI was impacted and who are attributed to you [TherapyNotes] as a customer of CHC.”

What does this mean?

Change Healthcare has been investigating the attack to determine the scope of the data that was affected.  While they have made significant progress in this investigation, it is continuing and may continue for some time.  As of today, Change Healthcare has not identified any patient information related to TherapyNotes® as being breached as a part of the ransomware attack.  They have committed to continuing their investigation and providing updates if this status changes.

What’s next?

As of this time, Change Healthcare has agreed to continue to provide updates as additional information is available.  Change Healthcare has also provided resources for individuals concerned that their information may have been compromised, including free credit monitoring services, available at https://www.unitedhealthgroup.com/ns/health-data-breach.html. Keep an eye on our blog for more information as it becomes available.