Important Information Regarding Patient Privacy at Arkansas Children’s

At Arkansas Children’s Hospital, our number one priority is to protect the safety and well-being of the children in our care. This includes safeguarding personal information.

On November 27, 2017, Arkansas Children’s Hospital was the target of an attack on our employees’ email accounts. On that same day, we hired a leading forensic firm to begin an investigation.  The investigation determined emails containing some patients’ information were in the email accounts.

The attackers gained limited access to sensitive information that may have included the names, addresses, physician’s names, reasons for visit, dates of birth, and dates of service for a small group of our patients. Social security numbers, medical records, and financial data were not affected.

This incident affected a limited number of patients whose information was contained in the email accounts. We mailed letters to patients whose information may have been included in the email accounts on January 26, 2018. We have no indication that this information has been misused.

However, we want to assure our patients that we take matters like this very seriously. Although these types of attacks are very common, we employ advanced technology and security systems to protect our patients’ privacy and block thousands of attacks like this every day. 

In addition, we are evaluating ways to further enhance security and help prevent something like this from happening in the future. The Arkansas Children’s Hospital compliance and IT security departments have developed mandatory training sessions to further educate our employees and reinforce our commitment to safety. As champions for children for more than a century, we are dedicated to providing the best possible care for our patients and their families.

If you believe your child’s information was affected and did not receive a letter, please call 1-(866) 277-8964.