Michigan-based PsyGenics, Inc. provides holistic mental health services to individuals diagnosed with intellectual and developmental disabilities. On mar 25, during a subroutine certificate review, they discovered that an employee had emailed files to her personal email account on march 24 — and the spreadsheet contained patients protected health information: name, diagnosis code, appointment time, and provider name. record more in their pressure release. They make not seem to divulge what steps they took with respect to the employee. And they come not indicate the number of patients being notified. If they are a HIPAA-covered entity, and they sound like they would be, we may control this on HHS’s public breach creature at some point, although there’s a prospect that this is a < 500 breach.