Online data breach affects employees of Children’s Mercy Hospital

08/18/2014 6:34 PM

08/18/2014 6:52 PM

A security breach has been discovered in an online scheduling application used two years ago to register more than 4,000 Children’s Mercy Hospital employees and spouses for a wellness program.

The breach, which occurred in the last few months, included names, home and email addresses, phone numbers and dates of birth, according to a statement by StayWell Health Management, which provided the program. Financial and health information and Social Security numbers were not breached, the company said.

“We do not believe that affected individuals are at risk for identity theft, and we do not believe individuals need to take action due to the non-sensitive nature of the information,” Melissa Gilkerson, a StayWell spokeswoman, said in a statement.

According to StayWell, the information was collected in 2012 from Children’s Mercy employees and their spouses or domestic partners who registered online for a health-screening appointment. The data was stored by Onsite Health Diagnostics, a vendor used by StayWell. When Onsite became aware of the breach, it immediately removed data from the affected system, StayWell said.

StayWell has contacted the 4,076 people affected by the breach and provided them with the number to a telephone helpline. So far, the helpline has received about 23 calls.

To reach Alan Bavley, call 816-234-4858 or send email to


Join the Discussion

The Kansas City Star is pleased to provide this opportunity to share information, experiences and observations about what's in the news. Some of the comments may be reprinted elsewhere on the site or in the newspaper. We encourage lively, open debate on the issues of the day, and ask that you refrain from profanity, hate speech, personal comments and remarks that are off point. Thank you for taking the time to offer your thoughts.

Terms of Service