July 13, 2022
RE: Data Breach involving Professional Finance Company, Inc.
Dear Valued Patients of Stillwater Medical:
First of all, we would like to take a moment to thank you for trusting Stillwater Medical’s family of services for your health care. We know you have many choices when choosing providers and we are humbled each and every day that our patients continue to choose us.
As part of our commitment to providing excellent health care, we also take your patient information and privacy very seriously. We are continually re-evaluating our privacy measures to ensure that your information is as secure as possible. This includes our connections with outside vendors as well as our internal processes. However, even with all the right safeguards in place, breaches of data do still occur.
Early this year, one of our partners for our billing services, Professional Finance Company, Inc. (PFC), experienced a network breach incident that included our patient files. While the breach was identified and intercepted quickly by PFC, we know the potential misuse of information is a big concern.
After the forensic results of the beach were released, it was confirmed that the breach did not include any health-specific information such as clinical information or medical diagnoses, or any individual payment card, banking, or financial information. In addition, the digital forensics firm found no evidence that individual information has been specifically misused to date.
However, it is possible that some personal information could have been accessed by an unauthorized third party: first and last name, address, accounts receivable balance and payment information, and one or both of date of birth and Social Security number. PFC took robust measures using external council, federal agencies, and leading cybersecurity experts to protect your information.
PFC moved quickly to notify our patients at the conclusion of the forensic investigation, and as a result, you may have already received a letter about this breach from PFC. We wanted to follow up to assure you that their communication on this matter is legitimate and that Stillwater Medical and PFC are working diligently to protect your data. In addition, Stillwater Medical and PFC are offering free credit reporting to those affected by this breach.
If you still have questions and concerns, please call 844.663.3160. Again, we want to say thank you for choosing Stillwater Medical and we sincerely apologize for any stress, frustration, or inconvenience this has caused.
Your Friends at Stillwater Medical