Kentucky Psychiatric Hospital Notifying Over 24,000 Individuals of Possible Data and Security Breach

Our Lady of Peace, a hospital specializing in psychiatric care in the Louisville, Kentucky area, is in the process of letting almost 25,000 individuals of a missing flash drive containing personal information on patients assessed for care from 2002 onward.

The information contained on the flash drive that went missing sometime around April 1st, 2010, was unencrypted personal data on patients that were assessed for possibly care at Our Lady of Peace, but were not admitted to the hospital. The information includes names, insurance information, and medical data, but does not include Social Security numbers, birthdates, contact information or medical diagnosis or treatment data.

In addition to notifying those who may have been affected, Our Lady of Peace is also providing further education for their employees to help them understand different ways to protect patient information through encryption and using other technological abilities in order to further protect current and future patients of Our Lady of Peace hospital. In the meantime, anyone concerned of their personal identity being stolen or misused is encouraged to consider credit monitoring services and identity theft protection services offered through numerous companies around the nation.