The state Department of Community Health said it has notified state and federal agencies that a Florida company mistakenly put the private records of up to 71,000 Georgians on the Internet.
The records were made available on the Internet for several days by WellCare Health Plans Inc. of Tampa, Fla., and some may have been viewed by unauthorized people, company officials said.
The problem was caused by human error, the Department of Community Health said.
The department said Wednesday it has informed the federal Department of Health and Human Services and its Office of Civil Rights; the Centers for Medicare and Medicaid; the Governor’s Office of Consumer Affairs; and the Georgia Attorney General’s office about the data breach.
Any exposure of private health information is a potential violation of HIPAA, the Health Insurance Portability and Accountability Act.
The Department of Community Health said the families whose data may have been accessed are members of the federal Medicaid health program for the poor, and the federal-state PeachCare for Kids program for children of the working poor.