Kaiser Permanente Data Breach (2016)

Three Kaiser units – Kaiser Permanente Health Plan, Inc of Northern California, Kaiser Permanente Health Plan, Inc of Southern California, and Kaiser Foundation Health Plan of the Northwest – have been notifying members after an error exposed some members’ protected health information for a brief period. Based on reports to HHS, 8,020 members have been notified that for approximately two hours during the evening of October 12th into the early morning of October 13th, 2016, some protected health information that members viewed after signing in to kp.org may have been viewable by other visitors to the website during that same time frame. The error occurred during an upgrade that changed how the website stored data to make loading website pages quicker.