US Wellness, a wellness company based in Raleigh, North Carolina, has recently announced that it experienced a data security incident that might have involved the personal and/or protected health information of some of its clients. The incident occurred on January 31, 2023, when US Wellness’ vendor encountered a security incident that resulted in access disruption to specific systems. While there is no evidence of misuse of the affected information, US Wellness took swift action to secure its systems and launch an inquiry on February 9, 2023. The investigation revealed that specific personal and/or protected health information, such as names, addresses, dates of birth, member ID numbers, and Social Security numbers, might have been impacted during the incident.
## Notification Letters To Possibly Affected Individuals
In response to the data security incident, US Wellness has sent notification letters to potentially impacted individuals, informing them about the incident and steps they can take to protect their information. US Wellness sent notification letters to the affected individuals on March 22, 2023, and April 26, 2023, explaining what took place and offering them resources to help them through the situation.
## US Wellness Response and Client Resources
US Wellness has taken the security and protection of all information it holds very seriously. As such, they have instituted measures to enhance the security of their environment and minimize the risk of similar incidents happening again in the future. Additionally, US Wellness has set up a toll-free call center that is available to answer questions about the incident and related concerns.
The call center hours of operation are Monday through Friday from 8:00 A.M. to 10:00 P.M. CST and Saturday and Sunday 10:00 A.M. to 7:00 P.M. CST. US Wellness’s call center can be reached at 1-800-773-1925. When calling the toll-free call center, be prepared to provide the engagement number B087457. The protection of personal and protected health information is of critical importance to US Wellness, and they deeply regret any inconvenience or concern this incident may cause.
## Editorial
Data security breaches are a continuous concern worldwide, affecting individuals and companies alike. The breach and notification may cause individuals to feel vulnerable and expose their personal and/or protected health information unknowingly. It’s in US Wellness’ and all companies’ best interest to take responsible steps to protect personal and protected health information to maintain their clients’ trust. Companies need to ensure that their personnel and vendors adhere to strict security protocols and have prompt incident response systems in place. Further, educating clients about how they can also take necessary steps to protect their information is crucial in the fight against such incidents.
## Recommendations
In light of the current incident, it’s advised that US Wellness and other companies continuously review, update, and strengthen their data security protocols and limit end-user exposure to client information. Clients should be made aware of the measures being taken on their behalf, in addition to being educated on how to secure their personal and health information externally. Furthermore, it would be appropriate for US regulators to investigate further the incident and evaluate any necessary further repercussions.
<< photo by Joshua Sortino >>
