According to a notification letter sent to an unknown number of patients, Blue Shield of California (Blue Shield), “shared” the protected health information of members with an insurance broker who was not supposed to receive it. Apparently a Blue Shield employee sent the information via an email to the broker during the 2018 Medicare Annual Enrollment Period. The broker reportedly used the information to contact the members to try to sell a competing insurer’s Medicare Advantage Plan.

The information wrongfully emailed to the broker contained members’ names, addresses, Blue Shield subscriber identification number, telephone number, and the members’ Blue Shield Medicare Advantage plan.

Blue Shield has offered identity repair and credit monitoring services to those affected by the incident.