Tift Regional Health System, Inc. (“TRHS”) is providing notice of a recent data security incident. This notice provides information about the incident, our response, and resources available to individuals to help protect their information from possible misuse, should they feel it necessary to do so.
What Happened? On or around August 16, 2022, TRHS became aware of suspicious activity affecting certain systems within our network. We immediately launched an investigation, with the assistance of third-party specialists, to confirm the full nature and scope of the activity. We disabled the network proactively as a security response and restored access quickly. There was no encryption of systems or access to TRHS’ electronic medical record system, and the network has been available for staff and patients to support care delivery and services. The investigation determined that certain files on TRHS systems may have been accessed or copied without authorization between August 11, 2022 and August 17, 2022. TRHS’ investigation is ongoing to determine the personal information that may have been present in the potentially affected files. TRHS will send letters, where possible, to affected individuals identified through the review process, and is also posting this notice on its website.
What Information Was Involved? The investigation into the affected information is ongoing. The information potentially affected may include a combination of certain individuals’ Social Security numbers, patient identification numbers, driver’s license numbers, medical information, treatment information, diagnosis information, health insurance information, and dates of birth.
What We Are Doing. We take the security of information entrusted to us seriously and apologize for any inconvenience this incident may cause. As part of our ongoing commitment to the security of information within our care, TRHS is reviewing our existing policies and procedures regarding cybersecurity and evaluating additional measures and safeguards to protect against this type of incident in the future. TRHS also notified federal law enforcement about the incident and is supporting their investigation. TRHS will also be providing notice to relevant state and federal regulators regarding the incident, as applicable.
What You Can Do. We encourage individuals to remain vigilant against incidents of identity theft and fraud by reviewing their accounts and Explanation of Benefits and monitoring their free credit reports for suspicious activity. Individuals may also review the information contained in the Steps You Can Take to Protect Personal Information below.
For More Information. If you have questions about this incident that are not addressed in this notice, please contact 800-397-9808, Monday through Friday, 9:00 AM ET to 5:00 PM ET.
Steps You Can Take to Protect Personal Information
Monitor Your Accounts
Under U.S. law, a consumer is entitled to one free credit report annually from each of the three major credit reporting bureaus, Equifax, Experian, and TransUnion. To order your free credit report, visit www.annualcreditreport.com or call, toll-free, 1-877-322-8228. You may also directly contact the three major credit reporting bureaus listed below to request a free copy of your credit report.
Consumers have the right to place an initial or extended “fraud alert” on a credit file at no cost. An initial fraud alert is a 1-year alert that is placed on a consumer’s credit file. Upon seeing a fraud alert display on a consumer’s credit file, a business is required to take steps to verify the consumer’s identity before extending new credit. If you are a victim of identity theft, you are entitled to an extended fraud alert, which is a fraud alert lasting seven years. Should you wish to place a fraud alert, please contact any one of the three major credit reporting bureaus listed below.
As an alternative to a fraud alert, consumers have the right to place a “credit freeze” on a credit report, which will prohibit a credit bureau from releasing information in the credit report without the consumer’s express authorization. The credit freeze is designed to prevent credit, loans, and services from being approved in your name without your consent. However, you should be aware that using a credit freeze to take control over who gets access to the personal and financial information in your credit report may delay, interfere with, or prohibit the timely approval of any subsequent request or application you make regarding a new loan, credit, mortgage, or any other account involving the extension of credit. Pursuant to federal law, you cannot be charged to place or lift a credit freeze on your credit report. To request a security freeze, you will need to provide the following information:
- Full name (including middle initial as well as Jr., Sr., II, III, etc.);
- Social Security number;
- Date of birth;
- Addresses for the prior two to five years;
- Proof of current address, such as a current utility bill or telephone bill;
- A legible photocopy of a government-issued identification card (state driver’s license or ID card, etc.); and
- A copy of either the police report, investigative report, or complaint to a law enforcement agency concerning identity theft if you are a victim of identity theft.
Should you wish to place a credit freeze, please contact the three major credit reporting bureaus listed below:
| Equifax | Experian | TransUnion |
| https://www.equifax.com/personal/credit-report-services/ | https://www.experian.com/help/ | https://www.transunion.com/credit-help |
| 888-298-0045 | 1-888-397-3742 | 833-395-6938 |
