On July 23, 2020, an OHSU employee lost a document containing a list of 20 patients who were admitted to OHSU.
The document contained the patients’ full names, ages, genders, cities, locations in the hospital, medical record numbers, provider names, lengths of stay, insurance names and expected discharge dates. The document did not contain addresses or other contact information, financial information or sensitive personal information (e.g., Social Security numbers).
OHSU promptly notified all patients whose names were on the lost document. Despite exhausting all possible contact options, OHSU was unable to directly notify one patient due to out-of-date contact information (no known home address, no phone number, and MyChart account not activated). The patient was admitted sometime in July 2020 and discharged the same month.
This post is intended to provide substitute notice of breach to this patient because we could not otherwise notify them directly. Please contact the Information Privacy and Security Office at 503-494-0219 or email@example.com if you have any questions about this post.