Highmark recently discovered a database error originating from an August 2023 update, resulting in care and case management letters being erroneously sent to members’ previous addresses. Despite efforts to rectify the issue in February 2024, the error persisted for several months, affecting a total of 5,356 individuals who had previously changed addresses within that timeframe. These letters contained a range of personal information, including names, Highmark identification numbers, reference numbers, employer group details, dates of birth, service particulars, medication information, and provider/facility names. Notification letters were dispatched to affected individuals on April 2, 2024, to inform them about the incident.
In response to the database error, Highmark has implemented enhanced controls and database modifications aimed at preventing similar incidents in the future. These measures include prioritizing address accuracy, flagging current active addresses, and conducting validation checks to ensure that members have only one active address stored in the database. By taking proactive steps to address the root cause of the error and bolstering their data management protocols, Highmark aims to safeguard the privacy and security of its members’ personal information moving forward.
Reference:
