ORLANDO, Fla. — Orlando Health employees said at least one of its employees broke the rules and went through the personal information of Pulse survivors.
Ilka Reyes, 29, was shot nine times at the nightclub on June 12.
Reyes said she still doesn’t understand how the breach happened and was shocked to get the letter from the hospital.
The letter said that three days after she was admitted, a hospital worker got into her hospital records, bringing back the fear she’s trying to get over.
“Even in the hospital, I didn’t feel safe because I was still paranoid thinking someone was going to come in and shoot me,” Reyes said. “Why would they need that information? For who? For what?”
Pulse victim Miguel Honorato’s family told Channel 9 they received a call from Orlando Health about the breach.
Document: Read the letter sent to patients
The breach was discovered more than a month after it happened, and Orlando Health waited another month to notify patients.
Yolie Cintron has been helping Reyes and other Pulse survivors. So far, she’s found one other patient whose privacy was violated.
“Somebody sick, or somebody that wants money. That’s it. To sell it to a tabloid,” Cintron said.
Orlando Health’s letter to victims said one employee was responsible and likely did it out of personal curiosity.
But the hospital said in an email that more than one worker did it, saying, “Team members giving in to their personal curiosities violated our policies and steps have been taken internally to discipline those involved.”
Channel 9 asked for more clarification about whether there were more people involved, and why the letter to the victims only mentioned one employee was responsible, but never heard back from hospital officials.
The information included names, birthdays, hospital location, account and medical record numbers, admission time and visit reason.
The hospital apologized.
“It’s not enough. They just say, ‘Oh, I apologize.’ That’s not enough,” said Reyes.
Orlando Health said no Social Security or financial records were breached, and there was no evidence the information was copied or used in any way.
It’s not clear how those involved in the breach will be disciplined.
Cox Media Group