This is to notify patients of Methodist Dallas Medical Center of a possible breach of data containing identity information. This involves patients who received inpatient or outpatient surgery between September 2005 and August 2013 at Methodist Dallas Medical Center. It has been determined that information concerning their surgery may have been transmitted or stored on an Internet-based email service which, while password protected, does not meet Methodist’s guidelines for data storage security. The data stored with the Internet service provider included the patient’s name, patient hospital account number, date and time of scheduled surgery, birth date, surgeons’ names and a brief description of the operative procedure. The data DID NOT include any other identifying information. While every indication is that the data was only accessed for patient care purposes, in the interest of patient security and transparency and our obligation to report any potential for unauthorized access to personal health information to federal agencies, we are notifying all patients whose information was or may have been stored or transmitted using this service. The service provider has confirmed that all Methodist Dallas Medical Center patient information has been deleted from the Internet-based service. Letters were mailed to affected patients December 6, 2013.
Patients with questions or concerns may call toll-free 1-866-652-1022 Monday through Friday, 7 a.m.to 7 p.m. until February 28, 2014 or contact: