Trinity Health System says data breach may have exposed patients' personal info

laptop dark

(WWJ) A major health system in Michigan is dealing with a data breach that may have exposed protected personal information.

Trinity Health System says a third-party vendor of the health system, Blackbaud, was the victim of a cyber-attack between April 18 and May 16.

During the attack, personal information of Trinity Health patients as well as donors may have been accessible, according to a spokesperson for Trinity, which is the parent company for Mercy Health and St. Joe's health systems. 

An investigation identified that some combination of the following information may have been accessible within standard database fields: full name, address, phone numbers, email, most-recent donation date, date of birth, age, inpatient/outpatient status, dates of service, hospital location, patient room number, physician name, donor relation to patient, patient discharge status, patient insurance and patient department of service, the company said. A limited number of individuals may also have had certain financial information accessible through notes or attachments to their records.

Impacted patients and donors will be notified by mail. 

Credit monitoring and an information call center will be offered to anyone with increased financial risk due to the incident.  

As always, Trinity Health recommends that everyone remain vigilant and monitor their personal information to ensure it is not being used maliciously. This includes watching for fraudulent emails or text messages that appear to come from Trinity Health or our health systems as these might include links to dangerous websites or have attachments that may infect their computers.

Anyone who may have been impacted by the breach can visit this link for FAQ and more information.