PH TECH Notifies Customers of Data Breach Read MoreFAQ

PH TECH DATA BREACH FAQs

Last updated 7/24/23

Frequently Asked Questions

  1. Who is PH TECH?

    2. PH TECH is an outside company that works with health care plans, helping with a variety of things like customer service, enrollment, and payment services. You may not know who we are by name but know that we work closely with health care plans in your community.

  2. Why does PH TECH have my data?

    3. PH TECH is an outside company that works with health care plans, helping with a variety of things like customer service, enrollment, and payment services. We work closely with health care plans in your community which is why we have this data – to help support your health plan.

  3. Why am I hearing from PH TECH and not my health plan?

    4. PH TECH is an outside company that works with health care plans, helping with things like customer service, enrollment, and payment services. Since PH TECH was trusted with this data, we are reaching out about this incident instead of your health plan

  4. What happened?

    5. PH TECH uses something called Progress MOVEit to share files securely with our customers, including health plans. At the beginning of June, we learned from Progress MOVEit that there was a possible problem with their software and that they were working to fix it. On June 2, 2023, we learned that there was evidence of a suspicious entity who used this software problem to get access to private data. When we learned this, we immediately began a formal investigation. On June 16, 2023, we told customers, including the health care plans that give us your data, about this problem.

  5. Why haven’t I been notified before now?

    6. Even though we knew about this problem in early June, we needed time to figure out if PH TECH was affected. We also needed to see whose data was included.

  6. When did it happen?

    7. At the beginning of June, PH TECH learned from Progress MOVEit that there was evidence of a problem with the software they use to access data. When we learned this, we immediately began a formal investigation to see if PH TECH was affected. We learned that this data was exposed for a short time on May 30, 2023, and that the person involved was able to access and download it. On June 16, 2023, we told customers, including the health care plans that give us your data, about this problem.

  7. What personal information was exposed?

    8. The personal information that was downloaded varies from person to person. It may include name, date of birth, social security number (SSN), address, member ID number, plan ID number, email address, prior authorization information, diagnosis code, procedure code, and claim information.

  8. How was my/my loved one's data protected

    9. The data on our secure site can only be accessed by an authorized user. This information is encrypted when it is stored and decrypted when it is downloaded. Unfortunately, a software defect allowed an unauthorized user to gain access to the system and download files as if they were an authorized user.

  9. Have the authorities been notified and what was the outcome?

    10. The Federal Bureau of Investigation (FBI) was told about the issue on June 6, 2023.  At this time, they have not told PH TECH who the person(s) is that did this or if any arrests have been made.

  10. Is my/my loved one’s information safe? What is PH TECH doing to prevent this kind of theft from happening in the future?

    11. Protecting your information is very important to PH TECH, which is why we complete system upgrades and maintenance regularly. This incident happened before PH TECH was notified by Progress MOVEit, or any other experts in the security industry. Since we learned about it, PH TECH has done several things. We disabled access to the platform, fixed the issue, and rebuilt the access to the PH TECH platform to make sure there is no further unauthorized access of files. Also, please know that this incident did not involve any compromise of PH TECH usernames, passwords, or other information that would grant unauthorized users access to our systems.

    PH TECH will remain connected with our security partners and work closely with customers to understand any additional steps we can take now or things we can do in the future to protect your personal information.

  11. Has the stolen information been misused?

    12. At this time, we are not aware of any cases of identity theft or other bad activity. However, we are offering credit monitoring and web monitoring services to help members with any identity theft issues that could occur.

  12. Can the stolen data be used to access your systems again?

    13. No. The stolen data does not include any usernames or passwords that someone would need to access PH TECH systems. Also, we follow industry standard practices to secure access to our system, including two-factor authentication.

  13. What should I do to protect myself?

    14. Please contact (888) 498-1602 or go to https://response.idx.us/PHTECH to access credit monitoring services.

  14. I did not receive a letter, but I am concerned that my/my loved one’s personal information may have been disclosed in this incident.

    15. Please contact (888) 498-1602 or go to https://response.idx.us/PHTECH for more information.

  15. What if I have questions unrelated to this breach?

    16. Please look at the phone number on the back of your identification card for assistance with all other plan issues.

  16. Whom do I contact if I have questions?

    17. Please contact (888) 498-1602 or go to https://response.idx.us/PHTECH for more information.

  17. How do i get credit monitoring services?

    18. Please contact (888) 498-1602 or go to https://response.idx.us/PHTECH to access credit monitoring services.