Notice of Data Security Incident

SUBSTITUTE NOTICE

(November 2024)

Rocky Mountain Gastroenterology Associates PLLC (“RMG”) is providing notice of a data security incident that may have impacted some of its patients’ information. This notice explains the incident, measures that have been taken, and some steps patients can take in response.

We first became aware of the incident on September 13, 2024, after we were alerted to unusual activity in our Information Technology (“IT”) environment. Upon learning of this, we initiated an investigation, took steps to secure our systems, and notified law enforcement. Additionally, a third-party forensic firm was engaged to assist in the investigation.

RMG’s investigation determined that an unauthorized party accessed certain files from its network and determined that some of those files contain patient information, including names in combination with one or more of the following: dates of birth, addresses, medical record numbers, patient account numbers, Social Security numbers, health insurance identification numbers, diagnoses and/or treatment information.

On November 13, 2024, RMG began mailing letters to patients whose information was involved in the incident. RMG established a dedicated, toll-free incident response line to answer questions that individuals may have. If an individual believes their information was involved and have any questions about this incident, please call 303-205-1090, Monday through Friday, between 9:00 a.m. – 5:00 p.m., Mountain Time, except for major U.S. holidays.

For patients whose information was involved in the incident, we recommend that they review the statements they receive from their healthcare providers and health insurance plans. If they see any services that were not received, they should contact the provider or health plan immediately.

We take this incident very seriously and sincerely regret any concern this may cause. To help prevent something like this from happening again, we have implemented additional safeguards and technical security measures to further protect and monitor our systems.

Rocky Mountain Gastroenterology (RMG) experienced a data breach that impacted customer data. The SUBSTITUTE NOTICE provides the information that we have at this time about the breach and offers a dedicated call center to assist with questions and concerns. If an individual believes their information was involved and have any questions about this incident, please call 303-205-1090. Please seeSUBSTITUTE NOTICE