Sandra Glading, ZocDoc spokesperson, stated that the bug was discovered in August 2020, but “due to the complexity of the code, it took a significant amount of investigation to determine which, if any, practices and users were affected and how.” ZocDoc has since fixed the coding error, and revoked portal access to the affected usernames. Upon discovering the programming error, ZocDoc launched an investigation to determine how the error occurred, and how many patients were potentially affected as a result. Protected health information potentially accessed in the incident included names, email addresses, phone numbers, appointment histories with the practice, insurance information, Social Security numbers, and medical information provided by the patient. Although ZocDoc boasts six million users, the number of patients potentially affected by improper patient data access was limited to 7,600 patients. ZocDoc released a statement regarding the issue, stating that the error “allowed some past or current practice staff members to access the provider portal after their usernames and passwords were intended to be removed, deleted or otherwise limited.”Īs a result of this programming error, individuals that should not have been able to access patient data had the potential to access it.
In August 2020, ZocDoc discovered a programming error that allowed users, who were supposed to have revoked or limited access to their software, to regain full access.
What Was the Programming Error Causing the Improper Patient Data Access?
0 kommentar(er)
