On January 27, 2023, an OHSU workforce member accessed the patient’s record without a work-related purpose. The information viewed included the patient’s: full name, date of birth, address, phone number, medical record number, diagnoses, provider information and dates of service. The information accessed did not include the patient’s financial information or social security number.

Despite exhausting all possible contact options, OHSU was unable to directly notify this patient due to out-of-date contact information (no known home address, phone number, email address, and MyChart account not activated.) This patient has not received services from the OHSU Health system since 2008.

Please contact the Information Privacy and Security Office at 503-494-0219 or oips@ohsu.edu if you have any questions about this post.