Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

USA: Alliance Physical Therapy Group notifies OCR of data security incident

The Alliance Physical Therapy Group, LLC notified, on 23 February 2022, the U.S. Department of Health and Human Services ('HHS') Office for Civil Rights ('OCR') of a data security incident affecting 14,970 individuals. In particular, the Alliance Physical Therapy Group stated that, on 27 December 2021, it learned of a suspicious activity that affected certain systems within its network and it immediately launched an investigation, with the assistance of third-party specialists, to confirm the full nature and scope of the activity and restored functionality to the affected systems.

In addition, the Alliance Physical Therapy Group stated that, on 7 January 2022, it determined that certain personal information from the affected systems may have been accessed without authorisation, which includes social security numbers, driver's licence numbers, dates of birth, medical information, and health insurance information.

Moreover, the Alliance Physical Therapy Group stated that it is reviewing its existing policies and procedures regarding cybersecurity, and implementing additional measures and safeguards to protect against this type of incident in the future.

Furthermore, the Alliance Physical Therapy Group highlighted that it is not aware of any actual or attempted misuse of the personal information accessed and it is offering access to complimentary credit monitoring and identity restoration services.

You can read the Alliance Physical Therapy Groups' notice here and access details on the OCR portal here.