August 31, 2023
IU Health Plans reports security incident by third-party vendor’s law firm
IU Health Plans announced today that the law firm of its network vision manager, EyeMed, recently experienced a security incident. The law firm, Orrick, Herrington & Sutcliffe, LLC (Orrick), served as legal counsel to EyeMed during its 2020 security event.
In relation to this representation, Orrick detected that an unauthorized third party gained access to a portion of its network between February 28 and March 13, 2023, including a file used to store certain client files of EyeMed containing IU Health Plan vision benefit plan members’ information. IU Health Plans first learned of this incident on June 29, 2023, and promptly initiated a review at that time.
Orrick immediately took steps to block the unauthorized access and initiated its response process, including launching an investigation of the incident with the support of a third-party forensics firm. Orrick also notified law enforcement. In addition to these actions, Orrick deployed additional security measures and tools with the guidance of third-party experts to strengthen the ongoing security of its network.
IU Health Plans began notifying affected members on August 31, 2023. The information affected by the Orrick security incident may have included: member name, address, date of birth, phone number, email address, vision insurance account/ID number, health insurance account/ID number, health insurance account/ID number, and full or partial Social Security numbers. IU Health Plans wants to ensure that its information is protected, and Orrick will be offering free credit monitoring to those IU Health Plans members impacted.
If you have any questions, please call toll-free at 866-347-7897, Monday through Friday from 9:00 am to 6:30 pm Eastern Time, excluding major U.S. holidays. Callers who are deaf, hard-of-hearing, or speech-disabled may utilize their TeleTYpewriter (TTY) or Telecommunication Device (TDD) to access an operator at 866-347-7897, Monday through Friday, from 9:00 am to 6:30 pm Eastern Time, excluding major U.S. holidays.
August 31, 2023
IU Health Plans reports security incident by third-party vendor’s law firm
IU Health Plans announced today that the law firm of its network vision manager, EyeMed, recently experienced a security incident. The law firm, Orrick, Herrington & Sutcliffe, LLC (Orrick), served as legal counsel to EyeMed during its 2020 security event.
In relation to this representation, Orrick detected that an unauthorized third party gained access to a portion of its network between February 28 and March 13, 2023, including a file used to store certain client files of EyeMed containing IU Health Plan vision benefit plan members’ information. IU Health Plans first learned of this incident on June 29, 2023, and promptly initiated a review at that time.
Orrick immediately took steps to block the unauthorized access and initiated its response process, including launching an investigation of the incident with the support of a third-party forensics firm. Orrick also notified law enforcement. In addition to these actions, Orrick deployed additional security measures and tools with the guidance of third-party experts to strengthen the ongoing security of its network.
IU Health Plans began notifying affected members on August 31, 2023. The information affected by the Orrick security incident may have included: member name, address, date of birth, phone number, email address, vision insurance account/ID number, health insurance account/ID number, health insurance account/ID number, and full or partial Social Security numbers. IU Health Plans wants to ensure that its information is protected, and Orrick will be offering free credit monitoring to those IU Health Plans members impacted.
If you have any questions, please call toll-free at 866-347-7897, Monday through Friday from 9:00 am to 6:30 pm Eastern Time, excluding major U.S. holidays. Callers who are deaf, hard-of-hearing, or speech-disabled may utilize their TeleTYpewriter (TTY) or Telecommunication Device (TDD) to access an operator at 866-347-7897, Monday through Friday, from 9:00 am to 6:30 pm Eastern Time, excluding major U.S. holidays.
Thank you for visiting the IU Health Plans website, we value your opinion on how we can improve your online experience. After you complete your visit, would you be willing to answer a few questions to help us improve our website? Please complete this survey after you have completed your online session.
Yes Maybe Later NeverYou can now access and download your Indiana University Health Plans Medicare Advantage health records and search our Provider/Pharmacy Directory using a computer or smart phone.
The Interoperability and Patient Access Rule (“the Rule”) from the Centers for Medicare & Medicaid Services (CMS) requires IU Health Plans to offer and maintain a secure, standards-based way of allowing members to easily access their health records through third-party apps of their choice. These health records include health insurance claims and other information submitted to IU Health Plans by health care providers such as doctors and hospitals and may include cost and other clinical information.
Change Healthcare is the company managing the secure download of your data from IU Health Plans to the app of your choice. To do this, Change Healthcare uses a Patient Access Application Programming Interface (“API”). The Change Healthcare tool you will use to do the download is called Connected Health™️.
For more information on what you can do with your health records when you download them, check out the information at https://www.healthit.gov/how-t...
This feature is not currently available for members of our commercial group health plans.
Check the app’s privacy policy, website, and reviews to learn more about its privacy and security.
Note: If the app’s privacy policy does not clearly answer these questions, please reconsider using that app. Health records are very sensitive information, and you should choose apps with strong privacy and security standards.
Step 1: Log in to your IU Health Plans Member Portal account.
Step 2: Choose Manage My Health Records from the menu. Fill out the form.
Step 3: Look for an e-mail invitation from enroll.connectedhealth@changehealthcare.com. Change Healthcare is the company managing the secure download of your data from IU Health Plans to the app of your choice. The Change Healthcare tool you will use to do the download is called Connected Health™️.
Step 4: Follow the instructions in the invitation. Answer the questions to make sure you are matched to your correct health records.
Step 5: Once you have access to the Connected Health site, select an app to download to. See the Choosing an app and How to tell if a health records app is private and secure sections on this site for more information.
Step 6: Download your information to the app you choose. It may take up to 72 hours to complete the first download. After that, data should download within one business day of IU Health Plans processing a claim.
There are several ways to cancel your participation, revoke access to the app, and/or delete health records as part of the Interoperability Patient Access API / Connected Health Portal.
H7220_IUHMA22711_C