Between October 9, 2021 and October 17, 2021, Planned Parenthood of Los Angeles experienced a data breach where an unauthorized third party gained access to its servers where sensitive patient data was stored. Planned Parenthood waited until November 30, 2021 to notify people that their information was accessed.
Planned Parenthood has had several data breaches in the past few years. This most recent data breach targeted only the Los Angeles Planned Parenthood. Around 400,000 individuals have been impacted by the breach.
According to Planned Parenthood, the following information was affected:
This information is called your Personally Identifiable Information (“PII”) or Protected Health Information (“PHI”). It tells others about you and is considered part of your identity. Businesses are required to secure this information or risk facing statutory penalties, among other legal penalties. Stolen PII and PHI can be used by identity thieves to engage in fraudulent activity using your identity.
Planned Parenthood is not offering free identity protection services. The best way to protect yourself after a data breach is to sign up for identity protection services as soon as possible. California offers extra protections and legal rights to its residents through the California Consumer Privacy Act.