On August 9, 2024, Gramercy Surgery Center, Inc. filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that it was the target of a recent cyberattack. In this notice, Gramercy Surgery Center explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, addresses, Social Security numbers, dates of birth, driver’s license or state identification card numbers, medical record numbers, treatment information, and health insurance information. Upon completing its investigation, Gramercy Surgery Center began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from Gramercy Surgery Center, Inc., it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Gramercy Surgery Center data breach. For more information, please see our recent piece on the topic here.

What Caused the Gramercy Surgery Center Data Breach?

The Gramercy Surgery Center data breach was only recently announced, and more information is expected in the near future. However, Gramercy Surgery Center’s filing with the U.S. Department of Health and Human Services Office for Civil Rights provides some important information on what led up to the breach. Gramercy Surgery Center also posted a notice on its website discussing the incident.

According to these sources, on June 18, 2024, Gramercy Surgery Center determined that it had been the victim of a cyberattack. In response, Gramercy Surgery Center took the necessary steps to secure its system before launching an investigation to learn more about the incident and what information may have been subject to unauthorized access.

On June 28, 2024, Gramercy Surgery Center’s investigation confirmed that an unauthorized party was able to access portions of its IT network between June 14, 2024, and June 17, 2024. It was later determined that some of the files that were accessible to the unauthorized party contained confidential patient information.

After learning that sensitive consumer data was accessible to an unauthorized party, Gramercy Surgery Center reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, address, Social Security number, date of birth, driver’s license or state identification card number, medical record number, treatment information, and health insurance information.

On August 9, 2024, Gramercy Surgery Center sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.

More Information About Gramercy Surgery Center, Inc.

Founded in 2006, Gramercy Surgery Center, Inc. is a healthcare services provider based out of Flushing, New York. Gramercy Surgical Center offers care in ten specialties, including radiation oncology, general surgery, bariatric surgery, breast cancer surgery, gynecology, ophthalmology, orthopedic, otolaryngology (ENT), pain management, plastic and reconstructive surgery, podiatry, urology, lithotripsy. Gramercy Surgery Center employs more than 76 people and generates approximately $18 million in annual revenue.