Notice of Data Incident
August 1, 2023

Dear Patients:
We post this Notice pursuant to the United States Health Insurance Portability and Accountability Act (“HIPAA”) to inform you about a data incident involving an unauthorized release of patient Protected Health Information (“PHI”), as that is defined by HIPAA, at Gary Motykie, M.D., a Medical Corporation and Gary Motykie, M.D. (“Practice”), a covered entity under HIPAA.

PHI, as defined by HIPAA, is information that is “created, received, maintained, or transmitted by or on behalf of the health care component of the Covered Entity.” § 164.105 (a)(2)(i)(D). Information that is created or received by a Covered Entity and that relates to the past, present, or future physical or mental health or condition of an individual; or the past, present, or future payment for the provision of healthcare to an individual is considered PHI. PHI is required to be protected when transmitted or maintained in any form by a Covered Entity. Individual identifiers (including but not limited to name, address, telephone number, fax, email address, social security number, medical record number, etc.) maintained in a designated record set along with health information (including but not limited to x-rays, images, scans, physician notes, diagnoses, treatment, eligibility approvals, claims, remittances, etc.) are collectively considered PHI.

Event Description:
On or about June 6, 2023, an initial technical analysis of the Practice’s information technology network determined an unauthorized release of PHI occurred to an unknown third party. The initial analysis determined that the unknown third party accessed the Practice’s network. It was further determined that the unknown third party acquired some of the Practice’s patient’s unencrypted PHI and that party was not authorized to do so and did so in an unlawful manner.

The information that may have been accessed or acquired during this unauthorized access included:

  • First and last name 
  • Social Security Number (if provided)
  • Address
  • Driver’s license or identification card number
  • Financial account or payment card number, in combination with any required CVV code
  • Intake forms, which may include medical information and history
  • Images taken in connection with the services rendered at our office
  • Health insurance information (if provided)
Steps Taken to Address:
Upon discovery, the Practice took the following immediate steps to address the situation:
  • Computers and servers replaced
  • Network passwords changed
  • Endpoint detection, virus, and malware detection tools and software installed on workstations and server
  • Limitations concerning Internet access
  • Access controls put in place for users based on role and responsibility
  • Server policies in place
  • Device locking mechanisms
  • Multi factor authentication enabled
  • Network segregation efforts
  • Encryption of devices
  • Additional workforce training
Risk Assessment:

The Practice conducted a risk assessment to evaluate the potential harm to potentially impacted individuals. Based on that assessment, it is determined that there is a high risk of harm. It is essential for potentially impacted individuals to remain vigilant in monitoring their personal accounts and data and promptly report any suspicious activity to law enforcement or their financial institutions.

Assistance and Resources:
Starting on or about June 22, 2023, letters were mailed to patients providing the following resources to assist the potentially impacted individuals, offering at no cost:
  • two (2) years of no cost Triple Bureau Credit Monitoring/Triple Bureau Credit Report/Triple Bureau Credit Score/Cyber Monitoring services.
  • the services also include reviewing whether Information appears on the dark web and alert the individual if such Information is found online.
  • proactive fraud assistance to help with any questions in event a potentially impacted persons becomes a victim of fraud.

Steps to Prevent Future Incidents: We deeply regret any inconvenience or concern this Incident may cause. The Practice is taking numerous steps to help prevent similar Incidents in the future. We will continue to review and enhance our security measures, policies, and employee training.

If you failed to receive your letter in the mail, and/or if there is a concern your mailing address has changed since you were a patient at the Practice, please contact 1-800-405-6108 or call our office immediately at 310-246-2355 from 9:00 am to 5:00 pm Pacific time, Monday through Friday.

Asclera

Remove Unsightly Spider Veins With Non-invasive ASCLERA® Injections!

Spider veins (a.k.a. venulectasias or telangiectasia) are the least severe manifestation of CVI (chronic venous insufficiency), a vein disease millions of Americans suffer from each year. These small, often intertwined groups of tiny blood vessels and capillaries are found just below the skin’s surface. Although similar in many respects to varicose veins, spider veins typically present as clearly visible red, blue or purple vein patterns on the thighs, lower legs and face, and do not bulge above the skin’s surface like their varicose counterparts. Also tending to be smaller than varicose veins, spider veins were given their moniker because their appearance often resembles that of a spider web or tree branch pattern.

Contact us Today

Spider Vein Removal Before & After Photos

Asclera Asclera
Asclera Asclera

While spider veins generally do not require medical treatment and are not associated with significant health problems, they can cause itching, burning, and uncomfortable feelings in the legs. As for aesthetic repercussions, the unsightly appearance of spider veins can make patients highly self-conscious, causing them to shy away from wearing skin-baring clothing. For patients frustrated with undesirable spider veins or small varicose veins, Dr. Motykie is pleased to offer a non-surgical solution—the next generation sclerotherapy (vein injection therapy) treatment ASCLERA® (polidocanol).

Once injected, ASCLERA® causes the lining of visible blood vessels in the legs to gently swell, blocking the flow of blood to visible spider or varicose veins. This blood flow blockage causes the vessels to clot, at which point the body naturally destroys and absorbs the treated veins so they disintegrate and disappear.

View Our Photo Gallery

Key Facts About ASCLERA®

  • ASCLERA® is approved for the treatment of both spider veins and small varicose veins (reticular veins may appear dark purple or blue and bulge from the surface of the skin)
  • Each ASCLERA® treatment session lasts only 30 to 60 minutes, allowing for convenient scheduling options.
  • Most patients require several appointments (scheduled 1-2 weeks apart) to achieve optimal results
  • Many patients who have previously tried laser vein removal treatments have switched to ASCLERA® injections after having achieved similar (and often superior) results with ASCLERA®
  • Most patients experience only mild temporary discomfort during the treatment session; however, after your session we recommend refraining from: strenuous exercise, plane flights, sun exposure, and hot tubs for several days, and we may advise wearing support hose or compression stockings for a short period of time in order to maximize your results.

For additional information about ASCLERA® injections for non-surgical spider vein and/or small varicose vein removal, please click here.

Before & After Photos provided by http://www.asclera.com/photo-gallery/