Arizona Dermatopathology Notifies Patients of Data Security Incident

SCOTTSDALE, Ariz., July 19, 2019 /PRNewswire/ -- Arizona Dermatopathology has been informed by Retrieval Masters Creditors Bureau d/b/a American Medical Collection Agency ("AMCA") of a data security incident involving the AMCA website related to its patient payment page.  AMCA is an independent collection agency that Arizona Dermatopathology and many other entities used for debt collection.  The incident is limited to AMCA's systems.  The security of Arizona Dermatopathology's systems was not affected by this incident.

According to AMCA, on March 21, 2019, AMCA became aware of facts indicating there had been a data security incident. After conducting an investigation, in May of 2019, AMCA notified Arizona Dermatopathology about the incident and informed Arizona Dermatopathology that an AMCA database containing information for some Arizona Dermatopathology patients had been affected.  However, at the time of AMCA's initial notification, AMCA did not provide Arizona Dermatopathology with enough information for Arizona Dermatopathology to identify potentially affected patients or confirm the nature of patient information potentially involved in the incident, and Arizona Dermatopathology's investigation is on-going. Based on the information provided by AMCA, the following information belonging to Arizona Dermatopathology patients may have been affected by the incident: patient names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information.  AMCA has advised Arizona Dermatopathology that its patient's social security numbers were not involved in the incident.  Arizona Dermatopathology does not provide AMCA healthcare records such as laboratory results and clinical history. 

In response to the breach, AMCA sent notification letters to approximately 500 Arizona Dermatopathology patients informing them that their names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information may have been impacted.  In addition, based on the investigation and the information provided by AMCA, Arizona Dermatopathology estimates that approximately another 6,500 patients may have had their names, addresses, phone numbers, dates of birth, dates of service, balance information and treatment provider information impacted by this incident.  For these patients, credit card and banking information is not affected.  The impact of this incident is limited to laboratory services provided to patients in the United States whose accounts were referred for debt collection.

Individuals with questions about this incident or questions about precautionary steps they can take may call 833-300-6928 for additional information.

Arizona Dermatopathology takes the security of its patients' information very seriously, including the security of data handled by vendors.  As a result of the investigation, Arizona Dermatopathology is no longer using AMCA for collection efforts.

The privacy and protection of patient information is a top priority.  Arizona Dermatopathology greatly appreciates the patience and loyalty of its patients as it works to respond to this incident.

SOURCE Arizona Dermatopathology