The Kansas Department for Aging and Disability Services is admitting a breach of personal or protected health information.
The state agency says it was made aware of a potential breach after an employee sent an unauthorized email to a group of current business associates. A news release says KDADS then immediately reached out both to the associates and to affected customers. It also says it is actively investigating how this occurred so it doesn't happen again.
KDADS says the information involved -- names, dates of birth, Social Security numbers, in-home services participation information and Medicaid identification numbers -- was disclosed to the agency's business associates but there is no evidence it has been misused or revealed publicly. KDADS says different agreements protect this information from being revealed or misused. It also says it has enacted new safeguards so this type of incident does not happen in the future.