PEORIA—OSF HealthCare System is mailing letters to its patients advising them of a data security incident at one of its vendors, Blackbaud, Inc. The company provides cloud-based and data solution services related to OSF’s fundraising activities.

 

The health care system includes OSF St. Anthony Medical Center in Rockford, among other facilities.

 

An unauthorized individual gained access to Blackbaud’s systems between Feb. 7 and May 20 this year. That person may have acquired backup copies of databases including a backup of the database 

OSF uses for fundraising efforts. 

 

OSF’s investigation and review determined that it contained some patient information, including names, addresses, phone numbers, email addresses, dates of birth, treatment facilities, treating physicians, departments of service, room numbers and/or medical record numbers.

 

Blackbaud advised that Social Security numbers, financial account and credit card information were encrypted and not able to be accessed by the unauthorized individual. 

 

The incident also did not involve any access to OSF’s medical systems or electronic health records.

 

OSF is assessing the security safeguards at Blackbaud and has established a dedicated call center to answer any questions about this incident, at 1-877-376-0079, Monday through Friday, 8 a.m. to 5:30 p.m. Central Time, excluding major U.S. holidays.

 

If patients see services they did not receive listed on statements from their health care providers, they should immediately contact the health care provider that issued the statement.