Alert: this is an alert
PORTLAND, Ore. (Oct. 6, 2022)—CareOregon recently discovered an incident involving disclosure of personal information for a subset of current members. The incident occurred on Aug. 9, 2022, when we learned that marketing letters were sent out to the wrong addresses of some CareOregon members and contained Protected Health Information (PHI). 8,022 current members were impacted by this data breach—including 5,589 CareOregon members, 1,849 Jackson Care Connect members, and 584 Columbia Pacific CCO members.
Impacted individuals have been notified of this data breach, which included member name and Medicaid ID number. CareOregon investigated this incident. Based on this review, we believe that this incident poses a low risk of fraud and/or identity theft.
Additionally, the investigation confirmed that the organization has the correct policies and procedures in place to address this type of breach and those processes are reviewed yearly. We’ve provided additional training to the employee to make sure this doesn’t happen again.
We encourage individuals who are concerned about impacts of this breach to:
P.O. Box 1000
Chester, PA 19016
P.O. Box 9532
Allen, TX 75013
P.O. Box 740241
Atlanta, GA 30374-0241
At CareOregon, we are committed to the highest standards of data safety and take our responsibility with personal information very seriously. Impacted individuals may reach our team at 888-712-3258 or TTY 711.