14 DAY TRIAL // On August 2, UT Physicians, the medical group practice of the University of Texas Health Science Center at Houston (UTHealth) Medical School, noticed that a laptop containing some patient information was missing from a locked closet located in an orthopedic clinic.
The device in question was protected by a password, but the data on it was not encrypted.
The computer, which was usually attached to an electromyography machine, contained hand and arm image data from between February 2010 and July 13, 2013. It also contained names, dates of birth and medical record numbers.
Fortunately, more sensitive information such as social security numbers and other financial details were not stored on the laptop.
Interestingly, UT Physicians’ policy dictates that all laptops must be encrypted.
Law enforcement has been called in to investigate. In the meantime, the organization is checking to make sure that no other unencrypted devices are attached to medical equipment.
While UTHealth doesn’t believe the information has been misused, it has started notifying the 596 individuals whose information has been stored on the lost device.