Henderson & Walton Women's Center
| Primary URL | Location | Industry | www[.]hw-obgyn[.]com |
Country
United States of America
|
Healthcare
|
|---|
Profile
Henderson & Walton Women's Center, also known as HWWC, is a United States-based healthcare provider specializing in women's health services. As a covered entity under the Health Insurance Portability and Accountability Act (HIPAA), the center manages protected health information including medical records, personal identifiers, and insurance details for its patients. The organization's operations involve the collection and storage of sensitive data, necessitating compliance with federal privacy and security regulations. While specific clinical services are not enumerated in available records, the nature of the compromised data indicates comprehensive women's healthcare delivery. The center's role within the sector involves handling highly sensitive personal and medical information, positioning it within a regulated environment where data security is paramount.
In 2022, the center experienced two distinct security incidents involving unauthorized access to employee email accounts. The first breach, disclosed on September 9, 2022, affected 34,306 patients, exposing personal identifiers, medical information, and insurance details. A prior incident on April 11, 2022, similarly compromised the data of over 34,000 individuals, including names, dates of birth, Social Security numbers, and medical records. Following each event, the organization secured the compromised accounts, verified that no server access occurred, and implemented enhanced email encryption protocols. Additional corrective actions included plans to eliminate email-based transmission of personal information entirely and the provision of complimentary credit monitoring services to affected individuals. These breaches illustrate the persistent risks associated with email communications in healthcare settings and the center's subsequent efforts to strengthen its security posture in line with regulatory expectations. The incidents also highlight the significant volume of patient data the center processes, as each breach impacted tens of thousands of individuals.