CIOX Health

CIOX Health, also known as Healthport, is a United States-based healthcare data management company. The organization provides services centered on the handling and processing of sensitive patient information for multiple healthcare provider clients. Its core function involves managing health data, which includes personal identifiers, clinical treatment records, and insurance details. This positions the company within the health information technology sector, serving healthcare providers by managing the data integral to their operations and patient care. The company's work inherently involves navigating the regulatory landscape of protected health information, though specific certifications or compliance frameworks are not detailed in the provided material. Its operational footprint is defined by its client base across the U.S. healthcare system, processing information that supports medical billing, records management, and administrative functions for these partners.

A significant event in the company's recent history was a cybersecurity incident discovered on June 24, 2021. Unauthor actors compromised an employee's email account over several days, potentially accessing a broad set of sensitive data. The exposed information included patient names, provider details, birthdates, service dates, and, in limited cases, Social Security numbers, driver's license information, health insurance details, and clinical treatment records. This breach impacted approximately 12,500 individuals across the company's various healthcare provider clients. Following an internal review, CIOX Health undertook standard breach response protocols, notifying affected healthcare partners and the individuals whose data was potentially compromised. In direct response to the incident, the organization implemented enhanced email security measures and provided additional cybersecurity training to its employees. These actions were aimed at mitigating the immediate risks from the breach and strengthening the company's overall security posture to prevent future unauthorized access to the sensitive health data it manages. The company continues its data management operations under its known aliases from its headquarters in the United States.