Mass General Brigham, the largest health care system in Massachusetts, has recently terminated three employees following a privacy incident which exposed the personal information of patients and policyholders. According to a press release by Mass General Brigham, unauthorized access to sensitive data, including names, addresses, medical records, and even credit card numbers, may have occurred earlier this year.

The incident, reportedly discovered between April 2 and April 4, 2024, involved personnel who allegedly allowed someone else to step in and perform aspects of their job, potentially compromising patient confidentiality. Mass General Brigham (MGB) has initiated contact with residents of Massachusetts who might be affected, advising them of the breach. "Protecting the privacy and security of its patients is a top priority for MGB," the hospital system said in a statement obtained by Boston 25 News.

The specifics of the cases reveal that from July 31, 2023, until April 2, 2024, an employee of the Mass General Brigham Health Plan may have permitted unauthorized access to members' information. This was detailed in a release provided by the Health Plan. Likewise, two employees from Mass General Brigham are alleged to have engaged in similar conduct between February 26, 2024, and April 4, 2024.

No bank account information has been reported as exposed in the incident. Mass General Brigham is providing impacted individuals with 24 months of free credit monitoring services and has established dedicated lines for inquiries and assistance, as reported by WHDH. Individuals looking for more information or wishing to inquire further can contact the hospital’s privacy call center toll-free at 1-888-826-9548. In response to the incident, Mass General Brigham is committing to monitor and improve safeguards and to enhancing its employee training processes.

Those who are potentially affected are encouraged by the hospital to vigilantly review their account statements and monitor their credit reports for suspicious activity. The hospital also urges individuals who receive a notification letter to follow the detailed instructions for protecting their information. Reflecting the gravity of the situation, Mass General Brigham has expressed deep commitment to preventing such privacy violations in the future.